Vim is an open source command line text editor. Vim < v9.1.0647 has double free in src/alloc.c:616. When closing a window, the corresponding tagstack data will be cleared and freed. However a bit later, the quickfix list belonging to that window will also be cleared and if that quickfix list points to the same tagstack data, Vim will try to free it again, resulting in a double-free/use-after-free access exception. Impact is low since the user must intentionally execute vim with several non-default flags, but it may cause a crash of Vim. The issue has been fixed as of Vim patch v9.1.0647
History

Fri, 29 Nov 2024 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 29 Nov 2024 12:30:00 +0000

Type Values Removed Values Added
References

Fri, 09 Aug 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Vim
Vim vim
CPEs cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*
Vendors & Products Vim
Vim vim

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-08-01T21:41:42.921Z

Updated: 2024-11-29T12:04:42.320Z

Reserved: 2024-07-24T16:51:40.950Z

Link: CVE-2024-41957

cve-icon Vulnrichment

Updated: 2024-11-29T12:04:42.320Z

cve-icon NVD

Status : Modified

Published: 2024-08-01T22:15:29.367

Modified: 2024-11-29T12:15:07.430

Link: CVE-2024-41957

cve-icon Redhat

Severity : Low

Publid Date: 2024-08-01T20:41:00Z

Links: CVE-2024-41957 - Bugzilla