{"id":"MGASA-2021-0481","summary":"Updated vim packages fix security vulnerability","details":"CVE-2021-3778: vim: Heap-based Buffer Overflow in utf_ptr2char()\nFix: patch 8.2.3409: reading beyond end of line with invalid utf-8 character\nWhen vim 8.2 is built with --with-features=huge --enable-gui=none\nand address sanitizer, a heap-buffer overflow occurs when running:\necho \"Ywp2XTCqCi4KeQpAMA==\" | base64 -d \u003e fuzz000.txt\nvim -u NONE -X -Z -e -s -S fuzz000.txt -c :qa!\n\nCVE-2021-3796: vim: Use After Free in nv_replace()\nFix: patch 8.2.3428: using freed memory when replacing\nWhen vim 8.2 is built with --with-features=huge --enable-gui=none\nand address sanitizer, a use-after-free occurs when running:\nLC_ALL=C vim -U NONE -X -Z -e -s -S poc -c :qa!\nwith the poc file provided.\n","modified":"2026-04-16T00:10:23.392141226Z","published":"2021-10-20T21:28:32Z","upstream":["CVE-2021-3778","CVE-2021-3796"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0481.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=29501"},{"type":"WEB","url":"https://github.com/vim/vim/commit/65b605665997fad54ef39a93199e305af2fe4d7f"},{"type":"WEB","url":"https://huntr.dev/bounties/d9c17308-2c99-4f9f-a706-f7f72c24c273/"},{"type":"WEB","url":"https://github.com/vim/vim/commit/35a9a00afcb20897d462a766793ff45534810dc3"},{"type":"WEB","url":"https://huntr.dev/bounties/ab60b7f3-6fb1-4ac2-a4fa-4d592e08008d/"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-5093-1"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2021/10/01/1"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/TE62UMYBZE4AE53K6OBBWK32XQ7544QM/"}],"affected":[{"package":{"name":"vim","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/vim?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"8.2.2143-3.2.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0481.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}