Bug 31239

Summary:	vim new security issue CVE-2022-4141
Product:	Mageia	Reporter:	David Walser <luigiwalser>
Component:	Security	Assignee:	QA Team <qa-bugs>
Status:	RESOLVED FIXED	QA Contact:	Sec team <security>
Severity:	normal
Priority:	Normal	CC:	andrewsfarm, davidwhodgins, herman.viaene, nicolas.salguero, sysadmin-bugs
Version:	8	Keywords:	advisory, validated_update
Target Milestone:	---
Hardware:	All
OS:	Linux
Whiteboard:	MGA8-64-OK
Source RPM:	vim-9.0.828-1.mga8.src.rpm	CVE:	CVE-2022-4141
Status comment:

Description David Walser 2022-12-07 18:28:55 CET

Fedora has issued an advisory today (December 7):
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/AZ3JMSUCR6Y7626RDWQ2HNSUFIQOJ33G/

The issue is fixed upstream in 9.0.0947.

David Walser 2022-12-07 18:29:09 CET

Status comment: (none) => Fixed upstream in 9.0.0947

Comment 1 Lewis Smith 2022-12-07 20:59:35 CET

v9.0.963 is in Cauldron, but do not know whether it is relevant.
Assigning to tv who looks after vim.

Assignee: bugsquad => thierry.vignaud

Comment 2 Nicolas Salguero 2022-12-08 11:49:25 CET

Suggested advisory:
========================

The updated packages fix a security vulnerability:

Heap based buffer overflow in vim/vim 9.0.0946 and below by allowing an attacker to CTRL-W gf in the expression used in the RHS of the substitute command. (CVE-2022-4141)

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4141
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/AZ3JMSUCR6Y7626RDWQ2HNSUFIQOJ33G/
========================

Updated packages in core/updates_testing:
========================
vim-common-9.0.963-1.mga8
vim-enhanced-9.0.963-1.mga8
vim-minimal-9.0.963-1.mga8
vim-X11-9.0.963-1.mga8

from SRPM:
vim-9.0.963-1.mga8.src.rpm

CC: (none) => nicolas.salguero
CVE: (none) => CVE-2022-4141
Status: NEW => ASSIGNED
Assignee: thierry.vignaud => qa-bugs
Status comment: Fixed upstream in 9.0.0947 => (none)

Comment 3 Herman Viaene 2022-12-09 14:01:37 CET

MGA8-64 MATE on Acer Aspire 5253
No installation issues
Muddled around with basic commands as a, d, i, x.
Wrote changes to the file and exited OK.
Good enough for me.

Whiteboard: (none) => MGA8-64-OK
CC: (none) => herman.viaene

Comment 4 Thomas Andrews 2022-12-10 14:22:14 CET

Validating. Advisory in comment 2.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Dave Hodgins 2022-12-13 02:45:30 CET

CC: (none) => davidwhodgins
Keywords: (none) => advisory

Comment 5 Mageia Robot 2022-12-13 23:11:10 CET

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2022-0464.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED

Comment 6 David Walser 2022-12-28 17:52:54 CET

This update also fixed CVE-2022-4292:
https://lists.suse.com/pipermail/sle-security-updates/2022-December/013353.html
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/W5H77Y5VXKUNUOHKTM222OKNCBNPW4P4/