Vim is an open source command line text editor. Vim < v9.1.0647 has double free in src/alloc.c:616. When closing a window, the corresponding tagstack data will be cleared and freed. However a bit later, the quickfix list belonging to that window will also be cleared and if that quickfix list points to the same tagstack data, Vim will try to free it again, resulting in a double-free/use-after-free access exception. Impact is low since the user must intentionally execute vim with several non-default flags,
but it may cause a crash of Vim. The issue has been fixed as of Vim patch v9.1.0647
Metrics
Affected Vendors & Products
References
History
Fri, 29 Nov 2024 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 29 Nov 2024 12:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Fri, 09 Aug 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Vim
Vim vim |
|
CPEs | cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:* | |
Vendors & Products |
Vim
Vim vim |
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-08-01T21:41:42.921Z
Updated: 2024-11-29T12:04:42.320Z
Reserved: 2024-07-24T16:51:40.950Z
Link: CVE-2024-41957
Vulnrichment
Updated: 2024-11-29T12:04:42.320Z
NVD
Status : Modified
Published: 2024-08-01T22:15:29.367
Modified: 2024-11-29T12:15:07.430
Link: CVE-2024-41957
Redhat