{"id":"SUSE-SU-2023:3463-1","summary":"Security update for vim","details":"This update for vim fixes the following issues:\n\nUpdated to version 9.0 with patch level 1572.\n\n- CVE-2023-2426: Fixed Out-of-range Pointer Offset use (bsc#1210996).\n- CVE-2023-2609: Fixed NULL Pointer Dereference (bsc#1211256).\n- CVE-2023-2610: Fixed nteger Overflow or Wraparound (bsc#1211257).\n- CVE-2023-1264: Fixed NULL Pointer Dereference (bsc#1209042).\n- CVE-2023-1355: Fixed NULL Pointer Dereference (bsc#1209187).\n- CVE-2023-1127: Fixed divide by zero in scrolldown() (bsc#1208828).\n","modified":"2026-02-04T03:44:54.070394Z","published":"2023-08-28T17:15:20Z","related":["CVE-2023-1127","CVE-2023-1264","CVE-2023-1355","CVE-2023-2426","CVE-2023-2609","CVE-2023-2610"],"upstream":["CVE-2023-1127","CVE-2023-1264","CVE-2023-1355","CVE-2023-2426","CVE-2023-2609","CVE-2023-2610"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20233463-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1208828"},{"type":"REPORT","url":"https://bugzilla.suse.com/1209042"},{"type":"REPORT","url":"https://bugzilla.suse.com/1209187"},{"type":"REPORT","url":"https://bugzilla.suse.com/1210996"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211256"},{"type":"REPORT","url":"https://bugzilla.suse.com/1211257"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-1127"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-1264"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-1355"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-2426"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-2609"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-2610"}],"affected":[{"package":{"name":"vim","ecosystem":"SUSE:Linux Enterprise Server 12 SP2-BCL","purl":"pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.1572-17.18.1"}]}],"ecosystem_specific":{"binaries":[{"vim":"9.0.1572-17.18.1","vim-data":"9.0.1572-17.18.1","gvim":"9.0.1572-17.18.1","vim-data-common":"9.0.1572-17.18.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:3463-1.json"}},{"package":{"name":"vim","ecosystem":"SUSE:Linux Enterprise Server 12 SP5","purl":"pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.1572-17.18.1"}]}],"ecosystem_specific":{"binaries":[{"vim":"9.0.1572-17.18.1","vim-data":"9.0.1572-17.18.1","gvim":"9.0.1572-17.18.1","vim-data-common":"9.0.1572-17.18.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:3463-1.json"}},{"package":{"name":"vim","ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 12 SP5","purl":"pkg:rpm/suse/vim&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.1572-17.18.1"}]}],"ecosystem_specific":{"binaries":[{"vim":"9.0.1572-17.18.1","vim-data":"9.0.1572-17.18.1","gvim":"9.0.1572-17.18.1","vim-data-common":"9.0.1572-17.18.1"}]},"database_specific":{"source":"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2023:3463-1.json"}}],"schema_version":"1.7.3"}