SUSE-SU-2023:2640-1

Details

This update for vim fixes the following issues:

CVE-2023-2426: Fixed out-of-range pointer offset (bsc#1210996).
CVE-2023-2609: Fixed NULL pointer dereference (bsc#1211256).
CVE-2023-2610: Fixed integer overflow or wraparound (bsc#1211257).

Affected Packages

gvim

SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise High Performance Computing 15 SP2-LTSSSUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

Fixed in:

9.0.1572-150000.5.46.1

vim

SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise High Performance Computing 15 SP2-LTSSSUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

Fixed in:

9.0.1572-150000.5.46.1

vim-data

SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise High Performance Computing 15 SP2-LTSSSUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

Fixed in:

9.0.1572-150000.5.46.1

vim-data-common

SUSE Enterprise Storage 7SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP1-LTSSSUSE Linux Enterprise High Performance Computing 15 SP2-LTSSSUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

Fixed in:

9.0.1572-150000.5.46.1

vim-small

SUSE Enterprise Storage 7.1SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP3-LTSSSUSE Linux Enterprise Micro 5.1SUSE Linux Enterprise Micro 5.2

Fixed in:

9.0.1572-150000.5.46.1

References

REPORT

https://bugzilla.suse.com/1210996

REPORT

https://bugzilla.suse.com/1211256

REPORT

https://bugzilla.suse.com/1211257

WEB

https://www.suse.com/security/cve/CVE-2023-2426

WEB

https://www.suse.com/security/cve/CVE-2023-2609

WEB

https://www.suse.com/security/cve/CVE-2023-2610

ADVISORY

https://www.suse.com/support/update/announcement/2023/suse-su-20232640-1/