vulnerability

Red Hat: CVE-2022-1927: CVE-2022-1927 vim: buffer over-read in utf_ptr2char() in mbyte.c (Multiple Advisories)

Name: Red Hat: CVE-2022-1927: CVE-2022-1927 vim: buffer over-read in utf_ptr2char() in mbyte.c (Multiple Advisories)
Creator: Red Hat
Published: 2022-05-29T00:00:00.000Z
Keywords: CVE, CWE-125, CWE-126, Red Hat, 2022, 1927, 1927 vim, redhat-upgrade-vim-common, redhat-upgrade-vim-common-debuginfo, redhat-upgrade-vim-debuginfo, redhat-upgrade-vim-debugsource, redhat-upgrade-vim-enhanced, redhat-upgrade-vim-enhanced-debuginfo, redhat-upgrade-vim-filesystem, redhat-upgrade-vim-minimal, redhat-upgrade-vim-minimal-debuginfo, redhat-upgrade-vim-x11, redhat-upgrade-vim-x11-debuginfo, Severity 7

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

May 29, 2022

Added

Aug 11, 2022

Modified

Jun 12, 2026

Description

A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a buffer over-read vulnerability in the utf_ptr2char function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution.

Solutions

redhat-upgrade-vim-commonredhat-upgrade-vim-common-debuginforedhat-upgrade-vim-debuginforedhat-upgrade-vim-debugsourceredhat-upgrade-vim-enhancedredhat-upgrade-vim-enhanced-debuginforedhat-upgrade-vim-filesystemredhat-upgrade-vim-minimalredhat-upgrade-vim-minimal-debuginforedhat-upgrade-vim-x11redhat-upgrade-vim-x11-debuginfo

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report