vulnerability

Amazon Linux 2023: CVE-2025-1215: Medium priority package update for vim

Severity
2
CVSS
(AV:L/AC:L/Au:S/C:N/I:N/A:P)
Published
Feb 12, 2025
Added
Apr 15, 2025
Modified
Jul 4, 2025

Description

A flaw was found in Vim. A local user may be able to trigger memory corruption by using the `--log` option with a non-existent path, which can lead to an application crash or other undefined behavior.

Solution(s)

amazon-linux-2023-upgrade-vim-commonamazon-linux-2023-upgrade-vim-dataamazon-linux-2023-upgrade-vim-debuginfoamazon-linux-2023-upgrade-vim-debugsourceamazon-linux-2023-upgrade-vim-default-editoramazon-linux-2023-upgrade-vim-enhancedamazon-linux-2023-upgrade-vim-enhanced-debuginfoamazon-linux-2023-upgrade-vim-filesystemamazon-linux-2023-upgrade-vim-minimalamazon-linux-2023-upgrade-vim-minimal-debuginfoamazon-linux-2023-upgrade-xxdamazon-linux-2023-upgrade-xxd-debuginfo
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.