Rapid7 Vulnerability & Exploit Database

Red Hat: CVE-2022-47024: CVE-2022-47024 vim: no check if the return value of XChangeGC() is NULL (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Red Hat: CVE-2022-47024: CVE-2022-47024 vim: no check if the return value of XChangeGC() is NULL (Multiple Advisories)

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
01/20/2023
Created
03/02/2023
Added
03/01/2023
Modified
09/03/2024

Description

A null pointer dereference issue was discovered in function gui_x11_create_blank_mouse in gui_x11.c in vim 8.1.2269 thru 9.0.0339 allows attackers to cause denial of service or other unspecified impacts.

Solution(s)

  • redhat-upgrade-vim-common
  • redhat-upgrade-vim-common-debuginfo
  • redhat-upgrade-vim-debuginfo
  • redhat-upgrade-vim-debugsource
  • redhat-upgrade-vim-enhanced
  • redhat-upgrade-vim-enhanced-debuginfo
  • redhat-upgrade-vim-filesystem
  • redhat-upgrade-vim-minimal
  • redhat-upgrade-vim-minimal-debuginfo
  • redhat-upgrade-vim-x11
  • redhat-upgrade-vim-x11-debuginfo

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;