An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
References
Configurations
History
07 Nov 2023, 02:49
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2017-02-27 07:59
Updated : 2023-12-10 12:01
NVD link : CVE-2017-6350
Mitre link : CVE-2017-6350
CVE.ORG link : CVE-2017-6350
JSON object : View
Products Affected
vim
- vim
CWE
CWE-190
Integer Overflow or Wraparound