Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-6349 (GCVE-0-2017-6349)
Vulnerability from cvelistv5 – Published: 2017-02-27 07:25 – Updated: 2024-08-05 15:25
VLAI?
EPSS
Summary
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T15:25:49.193Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "GLSA-201706-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"name": "1037949",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1037949"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"name": "96451",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/96451"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y"
},
{
"name": "USN-4309-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4309-1/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-02-27T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-03-30T19:06:03",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "GLSA-201706-26",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"name": "1037949",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1037949"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"name": "96451",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/96451"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y"
},
{
"name": "USN-4309-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4309-1/"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-6349",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "GLSA-201706-26",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"name": "1037949",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1037949"
},
{
"name": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c",
"refsource": "MISC",
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"name": "96451",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/96451"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA",
"refsource": "MISC",
"url": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y",
"refsource": "MISC",
"url": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y"
},
{
"name": "USN-4309-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4309-1/"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2017-6349",
"datePublished": "2017-02-27T07:25:00",
"dateReserved": "2017-02-26T00:00:00",
"dateUpdated": "2024-08-05T15:25:49.193Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"8.0.0376\", \"matchCriteriaId\": \"83EDAAC0-DAD8-494F-98A8-522604E389D5\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.\"}, {\"lang\": \"es\", \"value\": \"Un desbordamiento de entero en un sitio de asignaci\\u00f3n de memoria u_read_undo ocurrir\\u00eda para vim en versiones anteriores al parche 8.0.0377, si no valida correctamente los valores de longitud del \\u00e1rbol de decisi\\u00f3n, al leer un archivo desecho corrompido, lo que puede resultar en un desbordamiento de b\\u00fafer.\"}]",
"id": "CVE-2017-6349",
"lastModified": "2024-11-21T03:29:36.547",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2017-02-27T07:59:00.503",
"references": "[{\"url\": \"http://www.securityfocus.com/bid/96451\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id/1037949\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://security.gentoo.org/glsa/201706-26\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://usn.ubuntu.com/4309-1/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/96451\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id/1037949\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.gentoo.org/glsa/201706-26\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/4309-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-190\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2017-6349\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-02-27T07:59:00.503\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.\"},{\"lang\":\"es\",\"value\":\"Un desbordamiento de entero en un sitio de asignaci\u00f3n de memoria u_read_undo ocurrir\u00eda para vim en versiones anteriores al parche 8.0.0377, si no valida correctamente los valores de longitud del \u00e1rbol de decisi\u00f3n, al leer un archivo desecho corrompido, lo que puede resultar en un desbordamiento de b\u00fafer.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.0376\",\"matchCriteriaId\":\"83EDAAC0-DAD8-494F-98A8-522604E389D5\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/96451\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id/1037949\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.gentoo.org/glsa/201706-26\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/4309-1/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/96451\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1037949\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201706-26\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4309-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
WID-SEC-W-2022-2407
Vulnerability from csaf_certbund - Published: 2017-02-27 23:00 - Updated: 2022-12-26 23:00Summary
vim: Schwachstelle ermöglicht Denial of Service
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Vim (Vi IMproved) ist eine Weiterentwicklung des Texteditors vi.
Angriff
Ein entfernter, anonymer Angreifer kann eine Schwachstelle in vim ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Vim (Vi IMproved) ist eine Weiterentwicklung des Texteditors vi.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in vim ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-2407 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2017/wid-sec-w-2022-2407.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-2407 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2407"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2022:4619-1 vom 2022-12-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-December/013343.html"
},
{
"category": "external",
"summary": "Eintrag im National Vulnerability Database CVE-2017-6349 vom 2017-02-27",
"url": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6349"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2017:1712-1 vom 2017-06-29",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171712-1.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-4309-1 vom 2020-03-23",
"url": "https://usn.ubuntu.com/4309-1/"
}
],
"source_lang": "en-US",
"title": "vim: Schwachstelle erm\u00f6glicht Denial of Service",
"tracking": {
"current_release_date": "2022-12-26T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:40:35.105+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2022-2407",
"initial_release_date": "2017-02-27T23:00:00.000+00:00",
"revision_history": [
{
"date": "2017-02-27T23:00:00.000+00:00",
"number": "1",
"summary": "Initial Release"
},
{
"date": "2017-02-27T23:00:00.000+00:00",
"number": "2",
"summary": "Version nicht vorhanden"
},
{
"date": "2017-06-28T22:00:00.000+00:00",
"number": "3",
"summary": "New remediations available"
},
{
"date": "2020-03-23T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2022-12-26T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source vim \u003c 8.0.0377",
"product": {
"name": "Open Source vim \u003c 8.0.0377",
"product_id": "T009448",
"product_identification_helper": {
"cpe": "cpe:/a:vim:vim:8.0.0377"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-6349",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in vim im Zusammenhang mit der u_read_undo() Funktion. Ein anonymer, entfernter Angreifer kann diese Schwachstelle nutzen, um einen Speicher\u00fcberlauf bei der Validierung von korrumpierten \"undo\"-Dateien hervorzurufen, um dadurch einen Denial of Service Zustand herbeizuf\u00fchren."
}
],
"product_status": {
"known_affected": [
"T002207",
"T000126"
]
},
"release_date": "2017-02-27T23:00:00.000+00:00",
"title": "CVE-2017-6349"
}
]
}
OPENSUSE-SU-2024:11081-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
neovim-0.5.1-1.1 on GA media
Notes
Title of the patch
neovim-0.5.1-1.1 on GA media
Description of the patch
These are all security issues fixed in the neovim-0.5.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11081
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "neovim-0.5.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the neovim-0.5.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11081",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11081-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5953 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6349 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6350 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12735 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12735/"
}
],
"title": "neovim-0.5.1-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11081-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "neovim-0.5.1-1.1.aarch64",
"product": {
"name": "neovim-0.5.1-1.1.aarch64",
"product_id": "neovim-0.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "neovim-lang-0.5.1-1.1.aarch64",
"product": {
"name": "neovim-lang-0.5.1-1.1.aarch64",
"product_id": "neovim-lang-0.5.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "neovim-0.5.1-1.1.ppc64le",
"product": {
"name": "neovim-0.5.1-1.1.ppc64le",
"product_id": "neovim-0.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "neovim-lang-0.5.1-1.1.ppc64le",
"product": {
"name": "neovim-lang-0.5.1-1.1.ppc64le",
"product_id": "neovim-lang-0.5.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "neovim-0.5.1-1.1.s390x",
"product": {
"name": "neovim-0.5.1-1.1.s390x",
"product_id": "neovim-0.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "neovim-lang-0.5.1-1.1.s390x",
"product": {
"name": "neovim-lang-0.5.1-1.1.s390x",
"product_id": "neovim-lang-0.5.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "neovim-0.5.1-1.1.x86_64",
"product": {
"name": "neovim-0.5.1-1.1.x86_64",
"product_id": "neovim-0.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "neovim-lang-0.5.1-1.1.x86_64",
"product": {
"name": "neovim-lang-0.5.1-1.1.x86_64",
"product_id": "neovim-lang-0.5.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-0.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64"
},
"product_reference": "neovim-0.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-0.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le"
},
"product_reference": "neovim-0.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-0.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x"
},
"product_reference": "neovim-0.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-0.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64"
},
"product_reference": "neovim-0.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-lang-0.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64"
},
"product_reference": "neovim-lang-0.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-lang-0.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le"
},
"product_reference": "neovim-lang-0.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-lang-0.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x"
},
"product_reference": "neovim-lang-0.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "neovim-lang-0.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
},
"product_reference": "neovim-lang-0.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-5953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5953"
}
],
"notes": [
{
"category": "general",
"text": "vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5953",
"url": "https://www.suse.com/security/cve/CVE-2017-5953"
},
{
"category": "external",
"summary": "SUSE Bug 1024724 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1024724"
},
{
"category": "external",
"summary": "SUSE Bug 1123143 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1123143"
},
{
"category": "external",
"summary": "SUSE Bug 1173534 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1173534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5953"
},
{
"cve": "CVE-2017-6349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6349"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6349",
"url": "https://www.suse.com/security/cve/CVE-2017-6349"
},
{
"category": "external",
"summary": "SUSE Bug 1027057 for CVE-2017-6349",
"url": "https://bugzilla.suse.com/1027057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-6349"
},
{
"cve": "CVE-2017-6350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6350"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6350",
"url": "https://www.suse.com/security/cve/CVE-2017-6350"
},
{
"category": "external",
"summary": "SUSE Bug 1027053 for CVE-2017-6350",
"url": "https://bugzilla.suse.com/1027053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-6350"
},
{
"cve": "CVE-2019-12735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12735"
}
],
"notes": [
{
"category": "general",
"text": "getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12735",
"url": "https://www.suse.com/security/cve/CVE-2019-12735"
},
{
"category": "external",
"summary": "SUSE Bug 1137443 for CVE-2019-12735",
"url": "https://bugzilla.suse.com/1137443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:neovim-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-0.5.1-1.1.x86_64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.aarch64",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.s390x",
"openSUSE Tumbleweed:neovim-lang-0.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-12735"
}
]
}
OPENSUSE-SU-2024:11497-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
gvim-8.2.3408-1.2 on GA media
Notes
Title of the patch
gvim-8.2.3408-1.2 on GA media
Description of the patch
These are all security issues fixed in the gvim-8.2.3408-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11497
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "gvim-8.2.3408-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the gvim-8.2.3408-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11497",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11497-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-2438 page",
"url": "https://www.suse.com/security/cve/CVE-2007-2438/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-2953 page",
"url": "https://www.suse.com/security/cve/CVE-2007-2953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-1000382 page",
"url": "https://www.suse.com/security/cve/CVE-2017-1000382/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5953 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6349 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6350 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12735 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12735/"
}
],
"title": "gvim-8.2.3408-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11497-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "gvim-8.2.3408-1.2.aarch64",
"product": {
"name": "gvim-8.2.3408-1.2.aarch64",
"product_id": "gvim-8.2.3408-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "vim-8.2.3408-1.2.aarch64",
"product": {
"name": "vim-8.2.3408-1.2.aarch64",
"product_id": "vim-8.2.3408-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "vim-data-8.2.3408-1.2.aarch64",
"product": {
"name": "vim-data-8.2.3408-1.2.aarch64",
"product_id": "vim-data-8.2.3408-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "vim-data-common-8.2.3408-1.2.aarch64",
"product": {
"name": "vim-data-common-8.2.3408-1.2.aarch64",
"product_id": "vim-data-common-8.2.3408-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "vim-small-8.2.3408-1.2.aarch64",
"product": {
"name": "vim-small-8.2.3408-1.2.aarch64",
"product_id": "vim-small-8.2.3408-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-8.2.3408-1.2.ppc64le",
"product": {
"name": "gvim-8.2.3408-1.2.ppc64le",
"product_id": "gvim-8.2.3408-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-8.2.3408-1.2.ppc64le",
"product": {
"name": "vim-8.2.3408-1.2.ppc64le",
"product_id": "vim-8.2.3408-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-data-8.2.3408-1.2.ppc64le",
"product": {
"name": "vim-data-8.2.3408-1.2.ppc64le",
"product_id": "vim-data-8.2.3408-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-data-common-8.2.3408-1.2.ppc64le",
"product": {
"name": "vim-data-common-8.2.3408-1.2.ppc64le",
"product_id": "vim-data-common-8.2.3408-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-small-8.2.3408-1.2.ppc64le",
"product": {
"name": "vim-small-8.2.3408-1.2.ppc64le",
"product_id": "vim-small-8.2.3408-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-8.2.3408-1.2.s390x",
"product": {
"name": "gvim-8.2.3408-1.2.s390x",
"product_id": "gvim-8.2.3408-1.2.s390x"
}
},
{
"category": "product_version",
"name": "vim-8.2.3408-1.2.s390x",
"product": {
"name": "vim-8.2.3408-1.2.s390x",
"product_id": "vim-8.2.3408-1.2.s390x"
}
},
{
"category": "product_version",
"name": "vim-data-8.2.3408-1.2.s390x",
"product": {
"name": "vim-data-8.2.3408-1.2.s390x",
"product_id": "vim-data-8.2.3408-1.2.s390x"
}
},
{
"category": "product_version",
"name": "vim-data-common-8.2.3408-1.2.s390x",
"product": {
"name": "vim-data-common-8.2.3408-1.2.s390x",
"product_id": "vim-data-common-8.2.3408-1.2.s390x"
}
},
{
"category": "product_version",
"name": "vim-small-8.2.3408-1.2.s390x",
"product": {
"name": "vim-small-8.2.3408-1.2.s390x",
"product_id": "vim-small-8.2.3408-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-8.2.3408-1.2.x86_64",
"product": {
"name": "gvim-8.2.3408-1.2.x86_64",
"product_id": "gvim-8.2.3408-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "vim-8.2.3408-1.2.x86_64",
"product": {
"name": "vim-8.2.3408-1.2.x86_64",
"product_id": "vim-8.2.3408-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "vim-data-8.2.3408-1.2.x86_64",
"product": {
"name": "vim-data-8.2.3408-1.2.x86_64",
"product_id": "vim-data-8.2.3408-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "vim-data-common-8.2.3408-1.2.x86_64",
"product": {
"name": "vim-data-common-8.2.3408-1.2.x86_64",
"product_id": "vim-data-common-8.2.3408-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "vim-small-8.2.3408-1.2.x86_64",
"product": {
"name": "vim-small-8.2.3408-1.2.x86_64",
"product_id": "vim-small-8.2.3408-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-8.2.3408-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64"
},
"product_reference": "gvim-8.2.3408-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-8.2.3408-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le"
},
"product_reference": "gvim-8.2.3408-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-8.2.3408-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x"
},
"product_reference": "gvim-8.2.3408-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-8.2.3408-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64"
},
"product_reference": "gvim-8.2.3408-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-8.2.3408-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64"
},
"product_reference": "vim-8.2.3408-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-8.2.3408-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le"
},
"product_reference": "vim-8.2.3408-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-8.2.3408-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x"
},
"product_reference": "vim-8.2.3408-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-8.2.3408-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64"
},
"product_reference": "vim-8.2.3408-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-8.2.3408-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64"
},
"product_reference": "vim-data-8.2.3408-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-8.2.3408-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le"
},
"product_reference": "vim-data-8.2.3408-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-8.2.3408-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x"
},
"product_reference": "vim-data-8.2.3408-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-8.2.3408-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64"
},
"product_reference": "vim-data-8.2.3408-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-8.2.3408-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64"
},
"product_reference": "vim-data-common-8.2.3408-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-8.2.3408-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le"
},
"product_reference": "vim-data-common-8.2.3408-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-8.2.3408-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x"
},
"product_reference": "vim-data-common-8.2.3408-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-8.2.3408-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64"
},
"product_reference": "vim-data-common-8.2.3408-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-small-8.2.3408-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64"
},
"product_reference": "vim-small-8.2.3408-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-small-8.2.3408-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le"
},
"product_reference": "vim-small-8.2.3408-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-small-8.2.3408-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x"
},
"product_reference": "vim-small-8.2.3408-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-small-8.2.3408-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
},
"product_reference": "vim-small-8.2.3408-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-2438",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-2438"
}
],
"notes": [
{
"category": "general",
"text": "The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-2438",
"url": "https://www.suse.com/security/cve/CVE-2007-2438"
},
{
"category": "external",
"summary": "SUSE Bug 270496 for CVE-2007-2438",
"url": "https://bugzilla.suse.com/270496"
},
{
"category": "external",
"summary": "SUSE Bug 304172 for CVE-2007-2438",
"url": "https://bugzilla.suse.com/304172"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2007-2438"
},
{
"cve": "CVE-2007-2953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-2953"
}
],
"notes": [
{
"category": "general",
"text": "Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-2953",
"url": "https://www.suse.com/security/cve/CVE-2007-2953"
},
{
"category": "external",
"summary": "SUSE Bug 292433 for CVE-2007-2953",
"url": "https://bugzilla.suse.com/292433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-2953"
},
{
"cve": "CVE-2017-1000382",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-1000382"
}
],
"notes": [
{
"category": "general",
"text": "VIM version 8.0.1187 (and other versions most likely) ignores umask when creating a swap file (\"[ORIGINAL_FILENAME].swp\") resulting in files that may be world readable or otherwise accessible in ways not intended by the user running the vi binary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-1000382",
"url": "https://www.suse.com/security/cve/CVE-2017-1000382"
},
{
"category": "external",
"summary": "SUSE Bug 1065958 for CVE-2017-1000382",
"url": "https://bugzilla.suse.com/1065958"
},
{
"category": "external",
"summary": "SUSE Bug 1070955 for CVE-2017-1000382",
"url": "https://bugzilla.suse.com/1070955"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-1000382"
},
{
"cve": "CVE-2017-5953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5953"
}
],
"notes": [
{
"category": "general",
"text": "vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5953",
"url": "https://www.suse.com/security/cve/CVE-2017-5953"
},
{
"category": "external",
"summary": "SUSE Bug 1024724 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1024724"
},
{
"category": "external",
"summary": "SUSE Bug 1123143 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1123143"
},
{
"category": "external",
"summary": "SUSE Bug 1173534 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1173534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-5953"
},
{
"cve": "CVE-2017-6349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6349"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6349",
"url": "https://www.suse.com/security/cve/CVE-2017-6349"
},
{
"category": "external",
"summary": "SUSE Bug 1027057 for CVE-2017-6349",
"url": "https://bugzilla.suse.com/1027057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-6349"
},
{
"cve": "CVE-2017-6350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6350"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6350",
"url": "https://www.suse.com/security/cve/CVE-2017-6350"
},
{
"category": "external",
"summary": "SUSE Bug 1027053 for CVE-2017-6350",
"url": "https://bugzilla.suse.com/1027053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-6350"
},
{
"cve": "CVE-2019-12735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12735"
}
],
"notes": [
{
"category": "general",
"text": "getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12735",
"url": "https://www.suse.com/security/cve/CVE-2019-12735"
},
{
"category": "external",
"summary": "SUSE Bug 1137443 for CVE-2019-12735",
"url": "https://bugzilla.suse.com/1137443"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:gvim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2.x86_64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.aarch64",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.ppc64le",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.s390x",
"openSUSE Tumbleweed:vim-small-8.2.3408-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-12735"
}
]
}
FKIE_CVE-2017-6349
Vulnerability from fkie_nvd - Published: 2017-02-27 07:59 - Updated: 2025-04-20 01:37
Severity ?
Summary
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
References
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*",
"matchCriteriaId": "83EDAAC0-DAD8-494F-98A8-522604E389D5",
"versionEndIncluding": "8.0.0376",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows."
},
{
"lang": "es",
"value": "Un desbordamiento de entero en un sitio de asignaci\u00f3n de memoria u_read_undo ocurrir\u00eda para vim en versiones anteriores al parche 8.0.0377, si no valida correctamente los valores de longitud del \u00e1rbol de decisi\u00f3n, al leer un archivo desecho corrompido, lo que puede resultar en un desbordamiento de b\u00fafer."
}
],
"id": "CVE-2017-6349",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-02-27T07:59:00.503",
"references": [
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/96451"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id/1037949"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"source": "cve@mitre.org",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA"
},
{
"source": "cve@mitre.org",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y"
},
{
"source": "cve@mitre.org",
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"source": "cve@mitre.org",
"url": "https://usn.ubuntu.com/4309-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/96451"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1037949"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/4309-1/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2017-6349
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2017-6349",
"description": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"id": "GSD-2017-6349",
"references": [
"https://www.suse.com/security/cve/CVE-2017-6349.html",
"https://ubuntu.com/security/CVE-2017-6349",
"https://advisories.mageia.org/CVE-2017-6349.html",
"https://alas.aws.amazon.com/cve/html/CVE-2017-6349.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2017-6349"
],
"details": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"id": "GSD-2017-6349",
"modified": "2023-12-13T01:21:09.762026Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-6349",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "GLSA-201706-26",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"name": "1037949",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1037949"
},
{
"name": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c",
"refsource": "MISC",
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"name": "96451",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/96451"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA",
"refsource": "MISC",
"url": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y",
"refsource": "MISC",
"url": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y"
},
{
"name": "USN-4309-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4309-1/"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:vim:vim:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.0.0376",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-6349"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-190"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"name": "96451",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/96451"
},
{
"name": "GLSA-201706-26",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"name": "1037949",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1037949"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y",
"refsource": "MISC",
"tags": [],
"url": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y"
},
{
"name": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA",
"refsource": "MISC",
"tags": [],
"url": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA"
},
{
"name": "USN-4309-1",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/4309-1/"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2018-08-13T21:47Z",
"publishedDate": "2017-02-27T07:59Z"
}
}
}
SUSE-SU-2022:4619-1
Vulnerability from csaf_suse - Published: 2022-12-27 04:16 - Updated: 2022-12-27 04:16Summary
Security update for vim
Notes
Title of the patch
Security update for vim
Description of the patch
This update for vim fixes the following issues:
Updated to version 9.0.0814:
* Fixing bsc#1192478 VUL-1: CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow
* Fixing bsc#1203508 VUL-0: CVE-2022-3234: vim: Heap-based Buffer Overflow prior to 9.0.0483.
* Fixing bsc#1203509 VUL-1: CVE-2022-3235: vim: Use After Free in GitHub prior to 9.0.0490.
* Fixing bsc#1203820 VUL-0: CVE-2022-3324: vim: Stack-based Buffer Overflow in prior to 9.0.0598.
* Fixing bsc#1204779 VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c
* Fixing bsc#1203152 VUL-1: CVE-2022-2982: vim: use after free in qf_fill_buffer()
* Fixing bsc#1203796 VUL-1: CVE-2022-3296: vim: stack out of bounds read in ex_finally() in ex_eval.c
* Fixing bsc#1203797 VUL-1: CVE-2022-3297: vim: use-after-free in process_next_cpt_value() at insexpand.c
* Fixing bsc#1203110 VUL-1: CVE-2022-3099: vim: Use After Free in ex_docmd.c
* Fixing bsc#1203194 VUL-1: CVE-2022-3134: vim: use after free in do_tag()
* Fixing bsc#1203272 VUL-1: CVE-2022-3153: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404.
* Fixing bsc#1203799 VUL-1: CVE-2022-3278: vim: NULL pointer dereference in eval_next_non_blank() in eval.c
* Fixing bsc#1203924 VUL-1: CVE-2022-3352: vim: vim: use after free
* Fixing bsc#1203155 VUL-1: CVE-2022-2980: vim: null pointer dereference in do_mouse()
* Fixing bsc#1202962 VUL-1: CVE-2022-3037: vim: Use After Free in vim prior to 9.0.0321
* Fixing bsc#1200884 Vim: Error on startup
* Fixing bsc#1200902 VUL-0: CVE-2022-2183: vim: Out-of-bounds Read through get_lisp_indent() Mon 13:32
* Fixing bsc#1200903 VUL-0: CVE-2022-2182: vim: Heap-based Buffer Overflow through parse_cmd_address() Tue 08:37
* Fixing bsc#1200904 VUL-0: CVE-2022-2175: vim: Buffer Over-read through cmdline_insert_reg() Tue 08:37
* Fixing bsc#1201249 VUL-0: CVE-2022-2304: vim: stack buffer overflow in spell_dump_compl()
* Fixing bsc#1201356 VUL-1: CVE-2022-2343: vim: Heap-based Buffer Overflow in GitHub repository vim prior to 9.0.0044
* Fixing bsc#1201359 VUL-1: CVE-2022-2344: vim: Another Heap-based Buffer Overflow vim prior to 9.0.0045
* Fixing bsc#1201363 VUL-1: CVE-2022-2345: vim: Use After Free in GitHub repository vim prior to 9.0.0046.
* Fixing bsc#1201620 vim: SLE-15-SP4-Full-x86_64-GM-Media1 and vim-plugin-tlib-1.27-bp154.2.18.noarch issue
* Fixing bsc#1202414 VUL-1: CVE-2022-2819: vim: Heap-based Buffer Overflow in compile_lock_unlock()
* Fixing bsc#1202552 VUL-1: CVE-2022-2874: vim: NULL Pointer Dereference in generate_loadvar()
* Fixing bsc#1200270 VUL-1: CVE-2022-1968: vim: use after free in utf_ptr2char
* Fixing bsc#1200697 VUL-1: CVE-2022-2124: vim: out of bounds read in current_quote()
* Fixing bsc#1200698 VUL-1: CVE-2022-2125: vim: out of bounds read in get_lisp_indent()
* Fixing bsc#1200700 VUL-1: CVE-2022-2126: vim: out of bounds read in suggest_trie_walk()
* Fixing bsc#1200701 VUL-1: CVE-2022-2129: vim: out of bounds write in vim_regsub_both()
* Fixing bsc#1200732 VUL-1: CVE-2022-1720: vim: out of bounds read in grab_file_name()
* Fixing bsc#1201132 VUL-1: CVE-2022-2264: vim: out of bounds read in inc()
* Fixing bsc#1201133 VUL-1: CVE-2022-2284: vim: out of bounds read in utfc_ptr2len()
* Fixing bsc#1201134 VUL-1: CVE-2022-2285: vim: negative size passed to memmove() due to integer overflow
* Fixing bsc#1201135 VUL-1: CVE-2022-2286: vim: out of bounds read in ins_bytes()
* Fixing bsc#1201136 VUL-1: CVE-2022-2287: vim: out of bounds read in suggest_trie_walk()
* Fixing bsc#1201150 VUL-1: CVE-2022-2231: vim: null pointer dereference skipwhite()
* Fixing bsc#1201151 VUL-1: CVE-2022-2210: vim: out of bounds read in ml_append_int()
* Fixing bsc#1201152 VUL-1: CVE-2022-2208: vim: null pointer dereference in diff_check()
* Fixing bsc#1201153 VUL-1: CVE-2022-2207: vim: out of bounds read in ins_bs()
* Fixing bsc#1201154 VUL-1: CVE-2022-2257: vim: out of bounds read in msg_outtrans_special()
* Fixing bsc#1201155 VUL-1: CVE-2022-2206: vim: out of bounds read in msg_outtrans_attr()
* Fixing bsc#1201863 VUL-1: CVE-2022-2522: vim: out of bounds read via nested autocommand
* Fixing bsc#1202046 VUL-1: CVE-2022-2571: vim: Heap-based Buffer Overflow related to ins_comp_get_next_word_or_line()
* Fixing bsc#1202049 VUL-1: CVE-2022-2580: vim: Heap-based Buffer Overflow related to eval_string()
* Fixing bsc#1202050 VUL-1: CVE-2022-2581: vim: Out-of-bounds Read related to cstrchr()
* Fixing bsc#1202051 VUL-1: CVE-2022-2598: vim: Undefined Behavior for Input to API related to diff_mark_adjust_tp() and ex_diffgetput()
* Fixing bsc#1202420 VUL-1: CVE-2022-2817: vim: Use After Free in f_assert_fails()
* Fixing bsc#1202421 VUL-1: CVE-2022-2816: vim: Out-of-bounds Read in check_vim9_unlet()
* Fixing bsc#1202511 VUL-1: CVE-2022-2862: vim: use-after-free in compile_nested_function()
* Fixing bsc#1202512 VUL-1: CVE-2022-2849: vim: Invalid memory access related to mb_ptr2len()
* Fixing bsc#1202515 VUL-1: CVE-2022-2845: vim: Buffer Over-read related to display_dollar()
* Fixing bsc#1202599 VUL-1: CVE-2022-2889: vim: use-after-free in find_var_also_in_script() in evalvars.c
* Fixing bsc#1202687 VUL-1: CVE-2022-2923: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0240
* Fixing bsc#1202689 VUL-1: CVE-2022-2946: vim: use after free in function vim_vsnprintf_typval
* Fixing bsc#1202862 VUL-1: CVE-2022-3016: vim: Use After Free in vim prior to 9.0.0285 Mon 12:00
* Fixing bsc#1191770 VUL-0: CVE-2021-3875: vim: heap-based buffer overflow
* Fixing bsc#1192167 VUL-0: CVE-2021-3903: vim: heap-based buffer overflow
* Fixing bsc#1192902 VUL-0: CVE-2021-3968: vim: vim is vulnerable to
Heap-based Buffer Overflow
* Fixing bsc#1192903 VUL-0: CVE-2021-3973: vim: vim is vulnerable to
Heap-based Buffer Overflow
* Fixing bsc#1192904 VUL-0: CVE-2021-3974: vim: vim is vulnerable to Use
After Free
* Fixing bsc#1193466 VUL-1: CVE-2021-4069: vim: use-after-free in ex_open()
in src/ex_docmd.c
* Fixing bsc#1193905 VUL-0: CVE-2021-4136: vim: vim is vulnerable to
Heap-based Buffer Overflow
* Fixing bsc#1194093 VUL-1: CVE-2021-4166: vim: vim is vulnerable to
Out-of-bounds Read
* Fixing bsc#1194216 VUL-1: CVE-2021-4193: vim: vulnerable to
Out-of-bounds Read
* Fixing bsc#1194217 VUL-0: CVE-2021-4192: vim: vulnerable to Use After Free
* Fixing bsc#1194872 VUL-0: CVE-2022-0261: vim: Heap-based Buffer Overflow
in vim prior to 8.2.
* Fixing bsc#1194885 VUL-0: CVE-2022-0213: vim: vim is vulnerable to
Heap-based Buffer Overflow
* Fixing bsc#1195004 VUL-0: CVE-2022-0318: vim: Heap-based Buffer Overflow in
vim prior to 8.2.
* Fixing bsc#1195203 VUL-0: CVE-2022-0359: vim: heap-based buffer overflow in
init_ccline() in ex_getln.c
* Fixing bsc#1195354 VUL-0: CVE-2022-0407: vim: Heap-based Buffer Overflow in
Conda vim prior to 8.2.
* Fixing bsc#1198596 VUL-0: CVE-2022-1381: vim: global heap buffer overflow
in skip_range
* Fixing bsc#1199331 VUL-0: CVE-2022-1616: vim: Use after free in
append_command
* Fixing bsc#1199333 VUL-0: CVE-2022-1619: vim: Heap-based Buffer Overflow in
function cmdline_erase_chars
* Fixing bsc#1199334 VUL-0: CVE-2022-1620: vim: NULL Pointer Dereference in
function vim_regexec_string
* Fixing bsc#1199747 VUL-0: CVE-2022-1796: vim: Use After in
find_pattern_in_path
* Fixing bsc#1200010 VUL-0: CVE-2022-1897: vim: Out-of-bounds Write in vim
* Fixing bsc#1200011 VUL-0: CVE-2022-1898: vim: Use After Free in vim prior
to 8.2
* Fixing bsc#1200012 VUL-0: CVE-2022-1927: vim: Buffer Over-read in vim prior
to 8.2
* Fixing bsc#1070955 VUL-1: CVE-2017-17087: vim: Sets the group ownership of a
.swp file to the editor's primary group, which allows local users to obtain
sensitive information
* Fixing bsc#1194388 VUL-1: CVE-2022-0128: vim: vim is vulnerable to
Out-of-bounds Read
* Fixing bsc#1195332 VUL-1: CVE-2022-0392: vim: Heap-based Buffer Overflow
in vim prior to 8.2
* Fixing bsc#1196361 VUL-1: CVE-2022-0696: vim: NULL Pointer Dereference in
vim prior to 8.2
* Fixing bsc#1198748 VUL-1: CVE-2022-1420: vim: Out-of-range Pointer Offset
* Fixing bsc#1199651 VUL-1: CVE-2022-1735: vim: heap buffer overflow
* Fixing bsc#1199655 VUL-1: CVE-2022-1733: vim: Heap-based Buffer Overflow in
cindent.c
* Fixing bsc#1199693 VUL-1: CVE-2022-1771: vim: stack exhaustion in vim prior
to 8.2.
* Fixing bsc#1199745 VUL-1: CVE-2022-1785: vim: Out-of-bounds Write
* Fixing bsc#1199936 VUL-1: CVE-2022-1851: vim: out of bounds read
* Fixing bsc#1195004 - (CVE-2022-0318) VUL-0: CVE-2022-0318: vim: Heap-based Buffer Overflow in vim prior to 8.2.
* Fixing bsc#1190570 CVE-2021-3796: vim: use-after-free in nv_replace() in normal.c
* Fixing bsc#1191893 CVE-2021-3872: vim: heap-based buffer overflow in win_redr_status() drawscreen.c
* Fixing bsc#1192481 CVE-2021-3927: vim: vim is vulnerable to Heap-based Buffer Overflow
* Fixing bsc#1192478 CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow
* Fixing bsc#1193294 CVE-2021-4019: vim: vim is vulnerable to Heap-based Buffer Overflow
* Fixing bsc#1193298 CVE-2021-3984: vim: illegal memory access when C-indenting could lead to Heap Buffer Overflow
* Fixing bsc#1190533 CVE-2021-3778: vim: Heap-based Buffer Overflow in regexp_nfa.c
* Fixing bsc#1194216 CVE-2021-4193: vim: vulnerable to Out-of-bounds Read
* Fixing bsc#1194556 CVE-2021-46059: vim: A Pointer Dereference vulnerability
exists in Vim 8.2.3883 via the vim_regexec_multi function at regexp.c, which causes a denial of service.
* Fixing bsc#1195066 CVE-2022-0319: vim: Out-of-bounds Read in vim/vim prior to 8.2.
* Fixing bsc#1195126 CVE-2022-0351: vim: uncontrolled recursion in eval7()
* Fixing bsc#1195202 CVE-2022-0361: vim: Heap-based Buffer Overflow in vim prior to 8.2.
* Fixing bsc#1195356 CVE-2022-0413: vim: use after free in src/ex_cmds.c
Patchnames
SUSE-2022-4619,SUSE-OpenStack-Cloud-9-2022-4619,SUSE-OpenStack-Cloud-Crowbar-9-2022-4619,SUSE-SLE-SAP-12-SP4-2022-4619,SUSE-SLE-SERVER-12-SP2-BCL-2022-4619,SUSE-SLE-SERVER-12-SP3-BCL-2022-4619,SUSE-SLE-SERVER-12-SP4-LTSS-2022-4619,SUSE-SLE-SERVER-12-SP5-2022-4619
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for vim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for vim fixes the following issues:\n\nUpdated to version 9.0.0814:\n\n * Fixing bsc#1192478 VUL-1: CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow\n * Fixing bsc#1203508 VUL-0: CVE-2022-3234: vim: Heap-based Buffer Overflow prior to 9.0.0483.\n * Fixing bsc#1203509 VUL-1: CVE-2022-3235: vim: Use After Free in GitHub prior to 9.0.0490.\n * Fixing bsc#1203820 VUL-0: CVE-2022-3324: vim: Stack-based Buffer Overflow in prior to 9.0.0598.\n * Fixing bsc#1204779 VUL-0: CVE-2022-3705: vim: use after free in function qf_update_buffer of the file quickfix.c\n * Fixing bsc#1203152 VUL-1: CVE-2022-2982: vim: use after free in qf_fill_buffer()\n * Fixing bsc#1203796 VUL-1: CVE-2022-3296: vim: stack out of bounds read in ex_finally() in ex_eval.c\n * Fixing bsc#1203797 VUL-1: CVE-2022-3297: vim: use-after-free in process_next_cpt_value() at insexpand.c\n * Fixing bsc#1203110 VUL-1: CVE-2022-3099: vim: Use After Free in ex_docmd.c\n * Fixing bsc#1203194 VUL-1: CVE-2022-3134: vim: use after free in do_tag()\n * Fixing bsc#1203272 VUL-1: CVE-2022-3153: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404.\n * Fixing bsc#1203799 VUL-1: CVE-2022-3278: vim: NULL pointer dereference in eval_next_non_blank() in eval.c\n * Fixing bsc#1203924 VUL-1: CVE-2022-3352: vim: vim: use after free\n * Fixing bsc#1203155 VUL-1: CVE-2022-2980: vim: null pointer dereference in do_mouse()\n * Fixing bsc#1202962 VUL-1: CVE-2022-3037: vim: Use After Free in vim prior to 9.0.0321\n * Fixing bsc#1200884 Vim: Error on startup\n * Fixing bsc#1200902 VUL-0: CVE-2022-2183: vim: Out-of-bounds Read through get_lisp_indent() Mon 13:32\n * Fixing bsc#1200903 VUL-0: CVE-2022-2182: vim: Heap-based Buffer Overflow through parse_cmd_address() Tue 08:37\n * Fixing bsc#1200904 VUL-0: CVE-2022-2175: vim: Buffer Over-read through cmdline_insert_reg() Tue 08:37\n * Fixing bsc#1201249 VUL-0: CVE-2022-2304: vim: stack buffer overflow in spell_dump_compl()\n * Fixing bsc#1201356 VUL-1: CVE-2022-2343: vim: Heap-based Buffer Overflow in GitHub repository vim prior to 9.0.0044\n * Fixing bsc#1201359 VUL-1: CVE-2022-2344: vim: Another Heap-based Buffer Overflow vim prior to 9.0.0045\n * Fixing bsc#1201363 VUL-1: CVE-2022-2345: vim: Use After Free in GitHub repository vim prior to 9.0.0046.\n * Fixing bsc#1201620 vim: SLE-15-SP4-Full-x86_64-GM-Media1 and vim-plugin-tlib-1.27-bp154.2.18.noarch issue\n * Fixing bsc#1202414 VUL-1: CVE-2022-2819: vim: Heap-based Buffer Overflow in compile_lock_unlock()\n * Fixing bsc#1202552 VUL-1: CVE-2022-2874: vim: NULL Pointer Dereference in generate_loadvar()\n * Fixing bsc#1200270 VUL-1: CVE-2022-1968: vim: use after free in utf_ptr2char\n * Fixing bsc#1200697 VUL-1: CVE-2022-2124: vim: out of bounds read in current_quote()\n * Fixing bsc#1200698 VUL-1: CVE-2022-2125: vim: out of bounds read in get_lisp_indent()\n * Fixing bsc#1200700 VUL-1: CVE-2022-2126: vim: out of bounds read in suggest_trie_walk()\n * Fixing bsc#1200701 VUL-1: CVE-2022-2129: vim: out of bounds write in vim_regsub_both()\n * Fixing bsc#1200732 VUL-1: CVE-2022-1720: vim: out of bounds read in grab_file_name()\n * Fixing bsc#1201132 VUL-1: CVE-2022-2264: vim: out of bounds read in inc()\n * Fixing bsc#1201133 VUL-1: CVE-2022-2284: vim: out of bounds read in utfc_ptr2len()\n * Fixing bsc#1201134 VUL-1: CVE-2022-2285: vim: negative size passed to memmove() due to integer overflow\n * Fixing bsc#1201135 VUL-1: CVE-2022-2286: vim: out of bounds read in ins_bytes()\n * Fixing bsc#1201136 VUL-1: CVE-2022-2287: vim: out of bounds read in suggest_trie_walk()\n * Fixing bsc#1201150 VUL-1: CVE-2022-2231: vim: null pointer dereference skipwhite()\n * Fixing bsc#1201151 VUL-1: CVE-2022-2210: vim: out of bounds read in ml_append_int()\n * Fixing bsc#1201152 VUL-1: CVE-2022-2208: vim: null pointer dereference in diff_check()\n * Fixing bsc#1201153 VUL-1: CVE-2022-2207: vim: out of bounds read in ins_bs()\n * Fixing bsc#1201154 VUL-1: CVE-2022-2257: vim: out of bounds read in msg_outtrans_special()\n * Fixing bsc#1201155 VUL-1: CVE-2022-2206: vim: out of bounds read in msg_outtrans_attr()\n * Fixing bsc#1201863 VUL-1: CVE-2022-2522: vim: out of bounds read via nested autocommand\n * Fixing bsc#1202046 VUL-1: CVE-2022-2571: vim: Heap-based Buffer Overflow related to ins_comp_get_next_word_or_line()\n * Fixing bsc#1202049 VUL-1: CVE-2022-2580: vim: Heap-based Buffer Overflow related to eval_string()\n * Fixing bsc#1202050 VUL-1: CVE-2022-2581: vim: Out-of-bounds Read related to cstrchr()\n * Fixing bsc#1202051 VUL-1: CVE-2022-2598: vim: Undefined Behavior for Input to API related to diff_mark_adjust_tp() and ex_diffgetput()\n * Fixing bsc#1202420 VUL-1: CVE-2022-2817: vim: Use After Free in f_assert_fails()\n * Fixing bsc#1202421 VUL-1: CVE-2022-2816: vim: Out-of-bounds Read in check_vim9_unlet()\n * Fixing bsc#1202511 VUL-1: CVE-2022-2862: vim: use-after-free in compile_nested_function()\n * Fixing bsc#1202512 VUL-1: CVE-2022-2849: vim: Invalid memory access related to mb_ptr2len()\n * Fixing bsc#1202515 VUL-1: CVE-2022-2845: vim: Buffer Over-read related to display_dollar()\n * Fixing bsc#1202599 VUL-1: CVE-2022-2889: vim: use-after-free in find_var_also_in_script() in evalvars.c\n * Fixing bsc#1202687 VUL-1: CVE-2022-2923: vim: NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0240\n * Fixing bsc#1202689 VUL-1: CVE-2022-2946: vim: use after free in function vim_vsnprintf_typval\n * Fixing bsc#1202862 VUL-1: CVE-2022-3016: vim: Use After Free in vim prior to 9.0.0285 Mon 12:00\n * Fixing bsc#1191770 VUL-0: CVE-2021-3875: vim: heap-based buffer overflow \n * Fixing bsc#1192167 VUL-0: CVE-2021-3903: vim: heap-based buffer overflow \n * Fixing bsc#1192902 VUL-0: CVE-2021-3968: vim: vim is vulnerable to \n Heap-based Buffer Overflow \n * Fixing bsc#1192903 VUL-0: CVE-2021-3973: vim: vim is vulnerable to \n Heap-based Buffer Overflow \n * Fixing bsc#1192904 VUL-0: CVE-2021-3974: vim: vim is vulnerable to Use\n After Free \n * Fixing bsc#1193466 VUL-1: CVE-2021-4069: vim: use-after-free in ex_open()\n in src/ex_docmd.c \n * Fixing bsc#1193905 VUL-0: CVE-2021-4136: vim: vim is vulnerable to\n Heap-based Buffer Overflow \n * Fixing bsc#1194093 VUL-1: CVE-2021-4166: vim: vim is vulnerable to\n Out-of-bounds Read \n * Fixing bsc#1194216 VUL-1: CVE-2021-4193: vim: vulnerable to \n Out-of-bounds Read \n * Fixing bsc#1194217 VUL-0: CVE-2021-4192: vim: vulnerable to Use After Free\n * Fixing bsc#1194872 VUL-0: CVE-2022-0261: vim: Heap-based Buffer Overflow\n in vim prior to 8.2. \n * Fixing bsc#1194885 VUL-0: CVE-2022-0213: vim: vim is vulnerable to\n Heap-based Buffer Overflow \n * Fixing bsc#1195004 VUL-0: CVE-2022-0318: vim: Heap-based Buffer Overflow in\n vim prior to 8.2. \n * Fixing bsc#1195203 VUL-0: CVE-2022-0359: vim: heap-based buffer overflow in\n init_ccline() in ex_getln.c \n * Fixing bsc#1195354 VUL-0: CVE-2022-0407: vim: Heap-based Buffer Overflow in\n Conda vim prior to 8.2. \n * Fixing bsc#1198596 VUL-0: CVE-2022-1381: vim: global heap buffer overflow\n in skip_range \n * Fixing bsc#1199331 VUL-0: CVE-2022-1616: vim: Use after free in\n append_command \n * Fixing bsc#1199333 VUL-0: CVE-2022-1619: vim: Heap-based Buffer Overflow in\n function cmdline_erase_chars \n * Fixing bsc#1199334 VUL-0: CVE-2022-1620: vim: NULL Pointer Dereference in\n function vim_regexec_string \n * Fixing bsc#1199747 VUL-0: CVE-2022-1796: vim: Use After in\n find_pattern_in_path \n * Fixing bsc#1200010 VUL-0: CVE-2022-1897: vim: Out-of-bounds Write in vim \n * Fixing bsc#1200011 VUL-0: CVE-2022-1898: vim: Use After Free in vim prior\n to 8.2 \n * Fixing bsc#1200012 VUL-0: CVE-2022-1927: vim: Buffer Over-read in vim prior\n to 8.2 \n * Fixing bsc#1070955 VUL-1: CVE-2017-17087: vim: Sets the group ownership of a\n .swp file to the editor\u0027s primary group, which allows local users to obtain\n sensitive information \n * Fixing bsc#1194388 VUL-1: CVE-2022-0128: vim: vim is vulnerable to\n Out-of-bounds Read \n * Fixing bsc#1195332 VUL-1: CVE-2022-0392: vim: Heap-based Buffer Overflow\n in vim prior to 8.2 \n * Fixing bsc#1196361 VUL-1: CVE-2022-0696: vim: NULL Pointer Dereference in\n vim prior to 8.2 \n * Fixing bsc#1198748 VUL-1: CVE-2022-1420: vim: Out-of-range Pointer Offset \n * Fixing bsc#1199651 VUL-1: CVE-2022-1735: vim: heap buffer overflow \n * Fixing bsc#1199655 VUL-1: CVE-2022-1733: vim: Heap-based Buffer Overflow in\n cindent.c \n * Fixing bsc#1199693 VUL-1: CVE-2022-1771: vim: stack exhaustion in vim prior\n to 8.2. \n * Fixing bsc#1199745 VUL-1: CVE-2022-1785: vim: Out-of-bounds Write \n * Fixing bsc#1199936 VUL-1: CVE-2022-1851: vim: out of bounds read \n * Fixing bsc#1195004 - (CVE-2022-0318) VUL-0: CVE-2022-0318: vim: Heap-based Buffer Overflow in vim prior to 8.2.\n * Fixing bsc#1190570 CVE-2021-3796: vim: use-after-free in nv_replace() in normal.c\n * Fixing bsc#1191893 CVE-2021-3872: vim: heap-based buffer overflow in win_redr_status() drawscreen.c\n * Fixing bsc#1192481 CVE-2021-3927: vim: vim is vulnerable to Heap-based Buffer Overflow\n * Fixing bsc#1192478 CVE-2021-3928: vim: vim is vulnerable to Stack-based Buffer Overflow\n * Fixing bsc#1193294 CVE-2021-4019: vim: vim is vulnerable to Heap-based Buffer Overflow\n * Fixing bsc#1193298 CVE-2021-3984: vim: illegal memory access when C-indenting could lead to Heap Buffer Overflow\n * Fixing bsc#1190533 CVE-2021-3778: vim: Heap-based Buffer Overflow in regexp_nfa.c\n * Fixing bsc#1194216 CVE-2021-4193: vim: vulnerable to Out-of-bounds Read\n * Fixing bsc#1194556 CVE-2021-46059: vim: A Pointer Dereference vulnerability \n exists in Vim 8.2.3883 via the vim_regexec_multi function at regexp.c, which causes a denial of service. \n * Fixing bsc#1195066 CVE-2022-0319: vim: Out-of-bounds Read in vim/vim prior to 8.2.\n * Fixing bsc#1195126 CVE-2022-0351: vim: uncontrolled recursion in eval7()\n * Fixing bsc#1195202 CVE-2022-0361: vim: Heap-based Buffer Overflow in vim prior to 8.2.\n * Fixing bsc#1195356 CVE-2022-0413: vim: use after free in src/ex_cmds.c\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2022-4619,SUSE-OpenStack-Cloud-9-2022-4619,SUSE-OpenStack-Cloud-Crowbar-9-2022-4619,SUSE-SLE-SAP-12-SP4-2022-4619,SUSE-SLE-SERVER-12-SP2-BCL-2022-4619,SUSE-SLE-SERVER-12-SP3-BCL-2022-4619,SUSE-SLE-SERVER-12-SP4-LTSS-2022-4619,SUSE-SLE-SERVER-12-SP5-2022-4619",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_4619-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2022:4619-1",
"url": "https://www.suse.com/support/update/announcement/2022/suse-su-20224619-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2022:4619-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2022-December/013343.html"
},
{
"category": "self",
"summary": "SUSE Bug 1070955",
"url": "https://bugzilla.suse.com/1070955"
},
{
"category": "self",
"summary": "SUSE Bug 1173256",
"url": "https://bugzilla.suse.com/1173256"
},
{
"category": "self",
"summary": "SUSE Bug 1174564",
"url": "https://bugzilla.suse.com/1174564"
},
{
"category": "self",
"summary": "SUSE Bug 1176549",
"url": "https://bugzilla.suse.com/1176549"
},
{
"category": "self",
"summary": "SUSE Bug 1182324",
"url": "https://bugzilla.suse.com/1182324"
},
{
"category": "self",
"summary": "SUSE Bug 1190533",
"url": "https://bugzilla.suse.com/1190533"
},
{
"category": "self",
"summary": "SUSE Bug 1190570",
"url": "https://bugzilla.suse.com/1190570"
},
{
"category": "self",
"summary": "SUSE Bug 1191770",
"url": "https://bugzilla.suse.com/1191770"
},
{
"category": "self",
"summary": "SUSE Bug 1191893",
"url": "https://bugzilla.suse.com/1191893"
},
{
"category": "self",
"summary": "SUSE Bug 1192167",
"url": "https://bugzilla.suse.com/1192167"
},
{
"category": "self",
"summary": "SUSE Bug 1192478",
"url": "https://bugzilla.suse.com/1192478"
},
{
"category": "self",
"summary": "SUSE Bug 1192481",
"url": "https://bugzilla.suse.com/1192481"
},
{
"category": "self",
"summary": "SUSE Bug 1192902",
"url": "https://bugzilla.suse.com/1192902"
},
{
"category": "self",
"summary": "SUSE Bug 1192903",
"url": "https://bugzilla.suse.com/1192903"
},
{
"category": "self",
"summary": "SUSE Bug 1192904",
"url": "https://bugzilla.suse.com/1192904"
},
{
"category": "self",
"summary": "SUSE Bug 1193294",
"url": "https://bugzilla.suse.com/1193294"
},
{
"category": "self",
"summary": "SUSE Bug 1193298",
"url": "https://bugzilla.suse.com/1193298"
},
{
"category": "self",
"summary": "SUSE Bug 1193466",
"url": "https://bugzilla.suse.com/1193466"
},
{
"category": "self",
"summary": "SUSE Bug 1193905",
"url": "https://bugzilla.suse.com/1193905"
},
{
"category": "self",
"summary": "SUSE Bug 1194093",
"url": "https://bugzilla.suse.com/1194093"
},
{
"category": "self",
"summary": "SUSE Bug 1194216",
"url": "https://bugzilla.suse.com/1194216"
},
{
"category": "self",
"summary": "SUSE Bug 1194217",
"url": "https://bugzilla.suse.com/1194217"
},
{
"category": "self",
"summary": "SUSE Bug 1194388",
"url": "https://bugzilla.suse.com/1194388"
},
{
"category": "self",
"summary": "SUSE Bug 1194556",
"url": "https://bugzilla.suse.com/1194556"
},
{
"category": "self",
"summary": "SUSE Bug 1194872",
"url": "https://bugzilla.suse.com/1194872"
},
{
"category": "self",
"summary": "SUSE Bug 1194885",
"url": "https://bugzilla.suse.com/1194885"
},
{
"category": "self",
"summary": "SUSE Bug 1195004",
"url": "https://bugzilla.suse.com/1195004"
},
{
"category": "self",
"summary": "SUSE Bug 1195066",
"url": "https://bugzilla.suse.com/1195066"
},
{
"category": "self",
"summary": "SUSE Bug 1195126",
"url": "https://bugzilla.suse.com/1195126"
},
{
"category": "self",
"summary": "SUSE Bug 1195202",
"url": "https://bugzilla.suse.com/1195202"
},
{
"category": "self",
"summary": "SUSE Bug 1195203",
"url": "https://bugzilla.suse.com/1195203"
},
{
"category": "self",
"summary": "SUSE Bug 1195332",
"url": "https://bugzilla.suse.com/1195332"
},
{
"category": "self",
"summary": "SUSE Bug 1195354",
"url": "https://bugzilla.suse.com/1195354"
},
{
"category": "self",
"summary": "SUSE Bug 1195356",
"url": "https://bugzilla.suse.com/1195356"
},
{
"category": "self",
"summary": "SUSE Bug 1196361",
"url": "https://bugzilla.suse.com/1196361"
},
{
"category": "self",
"summary": "SUSE Bug 1198596",
"url": "https://bugzilla.suse.com/1198596"
},
{
"category": "self",
"summary": "SUSE Bug 1198748",
"url": "https://bugzilla.suse.com/1198748"
},
{
"category": "self",
"summary": "SUSE Bug 1199331",
"url": "https://bugzilla.suse.com/1199331"
},
{
"category": "self",
"summary": "SUSE Bug 1199333",
"url": "https://bugzilla.suse.com/1199333"
},
{
"category": "self",
"summary": "SUSE Bug 1199334",
"url": "https://bugzilla.suse.com/1199334"
},
{
"category": "self",
"summary": "SUSE Bug 1199651",
"url": "https://bugzilla.suse.com/1199651"
},
{
"category": "self",
"summary": "SUSE Bug 1199655",
"url": "https://bugzilla.suse.com/1199655"
},
{
"category": "self",
"summary": "SUSE Bug 1199693",
"url": "https://bugzilla.suse.com/1199693"
},
{
"category": "self",
"summary": "SUSE Bug 1199745",
"url": "https://bugzilla.suse.com/1199745"
},
{
"category": "self",
"summary": "SUSE Bug 1199747",
"url": "https://bugzilla.suse.com/1199747"
},
{
"category": "self",
"summary": "SUSE Bug 1199936",
"url": "https://bugzilla.suse.com/1199936"
},
{
"category": "self",
"summary": "SUSE Bug 1200010",
"url": "https://bugzilla.suse.com/1200010"
},
{
"category": "self",
"summary": "SUSE Bug 1200011",
"url": "https://bugzilla.suse.com/1200011"
},
{
"category": "self",
"summary": "SUSE Bug 1200012",
"url": "https://bugzilla.suse.com/1200012"
},
{
"category": "self",
"summary": "SUSE Bug 1200270",
"url": "https://bugzilla.suse.com/1200270"
},
{
"category": "self",
"summary": "SUSE Bug 1200697",
"url": "https://bugzilla.suse.com/1200697"
},
{
"category": "self",
"summary": "SUSE Bug 1200698",
"url": "https://bugzilla.suse.com/1200698"
},
{
"category": "self",
"summary": "SUSE Bug 1200700",
"url": "https://bugzilla.suse.com/1200700"
},
{
"category": "self",
"summary": "SUSE Bug 1200701",
"url": "https://bugzilla.suse.com/1200701"
},
{
"category": "self",
"summary": "SUSE Bug 1200732",
"url": "https://bugzilla.suse.com/1200732"
},
{
"category": "self",
"summary": "SUSE Bug 1200884",
"url": "https://bugzilla.suse.com/1200884"
},
{
"category": "self",
"summary": "SUSE Bug 1200902",
"url": "https://bugzilla.suse.com/1200902"
},
{
"category": "self",
"summary": "SUSE Bug 1200903",
"url": "https://bugzilla.suse.com/1200903"
},
{
"category": "self",
"summary": "SUSE Bug 1200904",
"url": "https://bugzilla.suse.com/1200904"
},
{
"category": "self",
"summary": "SUSE Bug 1201132",
"url": "https://bugzilla.suse.com/1201132"
},
{
"category": "self",
"summary": "SUSE Bug 1201133",
"url": "https://bugzilla.suse.com/1201133"
},
{
"category": "self",
"summary": "SUSE Bug 1201134",
"url": "https://bugzilla.suse.com/1201134"
},
{
"category": "self",
"summary": "SUSE Bug 1201135",
"url": "https://bugzilla.suse.com/1201135"
},
{
"category": "self",
"summary": "SUSE Bug 1201136",
"url": "https://bugzilla.suse.com/1201136"
},
{
"category": "self",
"summary": "SUSE Bug 1201150",
"url": "https://bugzilla.suse.com/1201150"
},
{
"category": "self",
"summary": "SUSE Bug 1201151",
"url": "https://bugzilla.suse.com/1201151"
},
{
"category": "self",
"summary": "SUSE Bug 1201152",
"url": "https://bugzilla.suse.com/1201152"
},
{
"category": "self",
"summary": "SUSE Bug 1201153",
"url": "https://bugzilla.suse.com/1201153"
},
{
"category": "self",
"summary": "SUSE Bug 1201154",
"url": "https://bugzilla.suse.com/1201154"
},
{
"category": "self",
"summary": "SUSE Bug 1201155",
"url": "https://bugzilla.suse.com/1201155"
},
{
"category": "self",
"summary": "SUSE Bug 1201249",
"url": "https://bugzilla.suse.com/1201249"
},
{
"category": "self",
"summary": "SUSE Bug 1201356",
"url": "https://bugzilla.suse.com/1201356"
},
{
"category": "self",
"summary": "SUSE Bug 1201359",
"url": "https://bugzilla.suse.com/1201359"
},
{
"category": "self",
"summary": "SUSE Bug 1201363",
"url": "https://bugzilla.suse.com/1201363"
},
{
"category": "self",
"summary": "SUSE Bug 1201620",
"url": "https://bugzilla.suse.com/1201620"
},
{
"category": "self",
"summary": "SUSE Bug 1201863",
"url": "https://bugzilla.suse.com/1201863"
},
{
"category": "self",
"summary": "SUSE Bug 1202046",
"url": "https://bugzilla.suse.com/1202046"
},
{
"category": "self",
"summary": "SUSE Bug 1202049",
"url": "https://bugzilla.suse.com/1202049"
},
{
"category": "self",
"summary": "SUSE Bug 1202050",
"url": "https://bugzilla.suse.com/1202050"
},
{
"category": "self",
"summary": "SUSE Bug 1202051",
"url": "https://bugzilla.suse.com/1202051"
},
{
"category": "self",
"summary": "SUSE Bug 1202414",
"url": "https://bugzilla.suse.com/1202414"
},
{
"category": "self",
"summary": "SUSE Bug 1202420",
"url": "https://bugzilla.suse.com/1202420"
},
{
"category": "self",
"summary": "SUSE Bug 1202421",
"url": "https://bugzilla.suse.com/1202421"
},
{
"category": "self",
"summary": "SUSE Bug 1202511",
"url": "https://bugzilla.suse.com/1202511"
},
{
"category": "self",
"summary": "SUSE Bug 1202512",
"url": "https://bugzilla.suse.com/1202512"
},
{
"category": "self",
"summary": "SUSE Bug 1202515",
"url": "https://bugzilla.suse.com/1202515"
},
{
"category": "self",
"summary": "SUSE Bug 1202552",
"url": "https://bugzilla.suse.com/1202552"
},
{
"category": "self",
"summary": "SUSE Bug 1202599",
"url": "https://bugzilla.suse.com/1202599"
},
{
"category": "self",
"summary": "SUSE Bug 1202687",
"url": "https://bugzilla.suse.com/1202687"
},
{
"category": "self",
"summary": "SUSE Bug 1202689",
"url": "https://bugzilla.suse.com/1202689"
},
{
"category": "self",
"summary": "SUSE Bug 1202862",
"url": "https://bugzilla.suse.com/1202862"
},
{
"category": "self",
"summary": "SUSE Bug 1202962",
"url": "https://bugzilla.suse.com/1202962"
},
{
"category": "self",
"summary": "SUSE Bug 1203110",
"url": "https://bugzilla.suse.com/1203110"
},
{
"category": "self",
"summary": "SUSE Bug 1203152",
"url": "https://bugzilla.suse.com/1203152"
},
{
"category": "self",
"summary": "SUSE Bug 1203155",
"url": "https://bugzilla.suse.com/1203155"
},
{
"category": "self",
"summary": "SUSE Bug 1203194",
"url": "https://bugzilla.suse.com/1203194"
},
{
"category": "self",
"summary": "SUSE Bug 1203272",
"url": "https://bugzilla.suse.com/1203272"
},
{
"category": "self",
"summary": "SUSE Bug 1203508",
"url": "https://bugzilla.suse.com/1203508"
},
{
"category": "self",
"summary": "SUSE Bug 1203509",
"url": "https://bugzilla.suse.com/1203509"
},
{
"category": "self",
"summary": "SUSE Bug 1203796",
"url": "https://bugzilla.suse.com/1203796"
},
{
"category": "self",
"summary": "SUSE Bug 1203797",
"url": "https://bugzilla.suse.com/1203797"
},
{
"category": "self",
"summary": "SUSE Bug 1203799",
"url": "https://bugzilla.suse.com/1203799"
},
{
"category": "self",
"summary": "SUSE Bug 1203820",
"url": "https://bugzilla.suse.com/1203820"
},
{
"category": "self",
"summary": "SUSE Bug 1203924",
"url": "https://bugzilla.suse.com/1203924"
},
{
"category": "self",
"summary": "SUSE Bug 1204779",
"url": "https://bugzilla.suse.com/1204779"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-0316 page",
"url": "https://www.suse.com/security/cve/CVE-2009-0316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-1248 page",
"url": "https://www.suse.com/security/cve/CVE-2016-1248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17087 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17087/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5953 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6349 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6350 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3778 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3796 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3872 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3872/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3875 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3903 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3927 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3928 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3928/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3968 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3973 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3973/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3974 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3974/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-3984 page",
"url": "https://www.suse.com/security/cve/CVE-2021-3984/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4019 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4019/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4069 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4069/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4136 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4166 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4192 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-4193 page",
"url": "https://www.suse.com/security/cve/CVE-2021-4193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-46059 page",
"url": "https://www.suse.com/security/cve/CVE-2021-46059/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0128 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0128/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0213 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0261 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0261/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0318 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0319 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0351 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0359 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0361 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0361/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0392 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0392/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0407 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0407/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0413 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0413/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-0696 page",
"url": "https://www.suse.com/security/cve/CVE-2022-0696/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1381 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1381/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1420 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1420/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1616 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1616/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1619 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1619/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1620 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1620/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1720 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1720/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1733 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1733/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1735 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1735/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1771 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1771/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1785 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1785/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1796 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1796/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1851 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1897 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1897/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1898 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1927 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1927/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-1968 page",
"url": "https://www.suse.com/security/cve/CVE-2022-1968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2124 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2124/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2125 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2125/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2126 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2126/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2129 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2129/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2175 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2175/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2182 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2182/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2183 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2206 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2207 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2208 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2210 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2231 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2257 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2264 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2284 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2285 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2286 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2287 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2304 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2343 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2344 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2345 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2522 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2522/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2571 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2571/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2580 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2581 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2581/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2598 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2816 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2816/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2817 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2819 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2819/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2845 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2849 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2862 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2862/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2874 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2889 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2889/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2923 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2946 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2946/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2980 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2980/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-2982 page",
"url": "https://www.suse.com/security/cve/CVE-2022-2982/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3016 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3016/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3037 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3037/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3099 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3099/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3134 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3134/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3153 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3153/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3234 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3234/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3235 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3278 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3296 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3296/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3297 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3324 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3352 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-3705 page",
"url": "https://www.suse.com/security/cve/CVE-2022-3705/"
}
],
"title": "Security update for vim",
"tracking": {
"current_release_date": "2022-12-27T04:16:45Z",
"generator": {
"date": "2022-12-27T04:16:45Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2022:4619-1",
"initial_release_date": "2022-12-27T04:16:45Z",
"revision_history": [
{
"date": "2022-12-27T04:16:45Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "gvim-9.0.0814-17.9.1.aarch64",
"product": {
"name": "gvim-9.0.0814-17.9.1.aarch64",
"product_id": "gvim-9.0.0814-17.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "vim-9.0.0814-17.9.1.aarch64",
"product": {
"name": "vim-9.0.0814-17.9.1.aarch64",
"product_id": "vim-9.0.0814-17.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "vim-small-9.0.0814-17.9.1.aarch64",
"product": {
"name": "vim-small-9.0.0814-17.9.1.aarch64",
"product_id": "vim-small-9.0.0814-17.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-9.0.0814-17.9.1.i586",
"product": {
"name": "gvim-9.0.0814-17.9.1.i586",
"product_id": "gvim-9.0.0814-17.9.1.i586"
}
},
{
"category": "product_version",
"name": "vim-9.0.0814-17.9.1.i586",
"product": {
"name": "vim-9.0.0814-17.9.1.i586",
"product_id": "vim-9.0.0814-17.9.1.i586"
}
},
{
"category": "product_version",
"name": "vim-small-9.0.0814-17.9.1.i586",
"product": {
"name": "vim-small-9.0.0814-17.9.1.i586",
"product_id": "vim-small-9.0.0814-17.9.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "vim-data-9.0.0814-17.9.1.noarch",
"product": {
"name": "vim-data-9.0.0814-17.9.1.noarch",
"product_id": "vim-data-9.0.0814-17.9.1.noarch"
}
},
{
"category": "product_version",
"name": "vim-data-common-9.0.0814-17.9.1.noarch",
"product": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch",
"product_id": "vim-data-common-9.0.0814-17.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-9.0.0814-17.9.1.ppc64le",
"product": {
"name": "gvim-9.0.0814-17.9.1.ppc64le",
"product_id": "gvim-9.0.0814-17.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-9.0.0814-17.9.1.ppc64le",
"product": {
"name": "vim-9.0.0814-17.9.1.ppc64le",
"product_id": "vim-9.0.0814-17.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-small-9.0.0814-17.9.1.ppc64le",
"product": {
"name": "vim-small-9.0.0814-17.9.1.ppc64le",
"product_id": "vim-small-9.0.0814-17.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-9.0.0814-17.9.1.s390x",
"product": {
"name": "gvim-9.0.0814-17.9.1.s390x",
"product_id": "gvim-9.0.0814-17.9.1.s390x"
}
},
{
"category": "product_version",
"name": "vim-9.0.0814-17.9.1.s390x",
"product": {
"name": "vim-9.0.0814-17.9.1.s390x",
"product_id": "vim-9.0.0814-17.9.1.s390x"
}
},
{
"category": "product_version",
"name": "vim-small-9.0.0814-17.9.1.s390x",
"product": {
"name": "vim-small-9.0.0814-17.9.1.s390x",
"product_id": "vim-small-9.0.0814-17.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-9.0.0814-17.9.1.x86_64",
"product": {
"name": "gvim-9.0.0814-17.9.1.x86_64",
"product_id": "gvim-9.0.0814-17.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "vim-9.0.0814-17.9.1.x86_64",
"product": {
"name": "vim-9.0.0814-17.9.1.x86_64",
"product_id": "vim-9.0.0814-17.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "vim-small-9.0.0814-17.9.1.x86_64",
"product": {
"name": "vim-small-9.0.0814-17.9.1.x86_64",
"product_id": "vim-small-9.0.0814-17.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "gvim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "vim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "gvim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "gvim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x"
},
"product_reference": "gvim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "vim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "vim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x"
},
"product_reference": "vim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "gvim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "gvim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x"
},
"product_reference": "gvim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "vim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "vim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x"
},
"product_reference": "vim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "gvim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "gvim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x"
},
"product_reference": "gvim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "gvim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64"
},
"product_reference": "vim-9.0.0814-17.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le"
},
"product_reference": "vim-9.0.0814-17.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x"
},
"product_reference": "vim-9.0.0814-17.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-9.0.0814-17.9.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64"
},
"product_reference": "vim-9.0.0814-17.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-common-9.0.0814-17.9.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch"
},
"product_reference": "vim-data-common-9.0.0814-17.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-0316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-0316"
}
],
"notes": [
{
"category": "general",
"text": "Untrusted search path vulnerability in src/if_python.c in the Python interface in Vim before 7.2.045 allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983), as demonstrated by an erroneous search path for plugin/bike.vim in bicyclerepair.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-0316",
"url": "https://www.suse.com/security/cve/CVE-2009-0316"
},
{
"category": "external",
"summary": "SUSE Bug 470100 for CVE-2009-0316",
"url": "https://bugzilla.suse.com/470100"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2009-0316"
},
{
"cve": "CVE-2016-1248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-1248"
}
],
"notes": [
{
"category": "general",
"text": "vim before patch 8.0.0056 does not properly validate values for the \u0027filetype\u0027, \u0027syntax\u0027 and \u0027keymap\u0027 options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-1248",
"url": "https://www.suse.com/security/cve/CVE-2016-1248"
},
{
"category": "external",
"summary": "SUSE Bug 1010685 for CVE-2016-1248",
"url": "https://bugzilla.suse.com/1010685"
},
{
"category": "external",
"summary": "SUSE Bug 1173534 for CVE-2016-1248",
"url": "https://bugzilla.suse.com/1173534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2016-1248"
},
{
"cve": "CVE-2017-17087",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17087"
}
],
"notes": [
{
"category": "general",
"text": "fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp file to the editor\u0027s primary group (which may be different from the group ownership of the original file), which allows local users to obtain sensitive information by leveraging an applicable group membership, as demonstrated by /etc/shadow owned by root:shadow mode 0640, but /etc/.shadow.swp owned by root:users mode 0640, a different vulnerability than CVE-2017-1000382.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17087",
"url": "https://www.suse.com/security/cve/CVE-2017-17087"
},
{
"category": "external",
"summary": "SUSE Bug 1065958 for CVE-2017-17087",
"url": "https://bugzilla.suse.com/1065958"
},
{
"category": "external",
"summary": "SUSE Bug 1070955 for CVE-2017-17087",
"url": "https://bugzilla.suse.com/1070955"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2017-17087"
},
{
"cve": "CVE-2017-5953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5953"
}
],
"notes": [
{
"category": "general",
"text": "vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5953",
"url": "https://www.suse.com/security/cve/CVE-2017-5953"
},
{
"category": "external",
"summary": "SUSE Bug 1024724 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1024724"
},
{
"category": "external",
"summary": "SUSE Bug 1123143 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1123143"
},
{
"category": "external",
"summary": "SUSE Bug 1173534 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1173534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2017-5953"
},
{
"cve": "CVE-2017-6349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6349"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6349",
"url": "https://www.suse.com/security/cve/CVE-2017-6349"
},
{
"category": "external",
"summary": "SUSE Bug 1027057 for CVE-2017-6349",
"url": "https://bugzilla.suse.com/1027057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2017-6349"
},
{
"cve": "CVE-2017-6350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6350"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6350",
"url": "https://www.suse.com/security/cve/CVE-2017-6350"
},
{
"category": "external",
"summary": "SUSE Bug 1027053 for CVE-2017-6350",
"url": "https://bugzilla.suse.com/1027053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2017-6350"
},
{
"cve": "CVE-2021-3778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3778"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3778",
"url": "https://www.suse.com/security/cve/CVE-2021-3778"
},
{
"category": "external",
"summary": "SUSE Bug 1190533 for CVE-2021-3778",
"url": "https://bugzilla.suse.com/1190533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3778"
},
{
"cve": "CVE-2021-3796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3796"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Use After Free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3796",
"url": "https://www.suse.com/security/cve/CVE-2021-3796"
},
{
"category": "external",
"summary": "SUSE Bug 1190570 for CVE-2021-3796",
"url": "https://bugzilla.suse.com/1190570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3796"
},
{
"cve": "CVE-2021-3872",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3872"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3872",
"url": "https://www.suse.com/security/cve/CVE-2021-3872"
},
{
"category": "external",
"summary": "SUSE Bug 1191893 for CVE-2021-3872",
"url": "https://bugzilla.suse.com/1191893"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-3872"
},
{
"cve": "CVE-2021-3875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3875"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3875",
"url": "https://www.suse.com/security/cve/CVE-2021-3875"
},
{
"category": "external",
"summary": "SUSE Bug 1191770 for CVE-2021-3875",
"url": "https://bugzilla.suse.com/1191770"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2021-3875",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-3875"
},
{
"cve": "CVE-2021-3903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3903"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3903",
"url": "https://www.suse.com/security/cve/CVE-2021-3903"
},
{
"category": "external",
"summary": "SUSE Bug 1192167 for CVE-2021-3903",
"url": "https://bugzilla.suse.com/1192167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3903"
},
{
"cve": "CVE-2021-3927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3927"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3927",
"url": "https://www.suse.com/security/cve/CVE-2021-3927"
},
{
"category": "external",
"summary": "SUSE Bug 1192481 for CVE-2021-3927",
"url": "https://bugzilla.suse.com/1192481"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3927"
},
{
"cve": "CVE-2021-3928",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3928"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Use of Uninitialized Variable",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3928",
"url": "https://www.suse.com/security/cve/CVE-2021-3928"
},
{
"category": "external",
"summary": "SUSE Bug 1192478 for CVE-2021-3928",
"url": "https://bugzilla.suse.com/1192478"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3928"
},
{
"cve": "CVE-2021-3968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3968"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3968",
"url": "https://www.suse.com/security/cve/CVE-2021-3968"
},
{
"category": "external",
"summary": "SUSE Bug 1192902 for CVE-2021-3968",
"url": "https://bugzilla.suse.com/1192902"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2021-3968",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208649 for CVE-2021-3968",
"url": "https://bugzilla.suse.com/1208649"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2021-3968",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-3968"
},
{
"cve": "CVE-2021-3973",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3973"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3973",
"url": "https://www.suse.com/security/cve/CVE-2021-3973"
},
{
"category": "external",
"summary": "SUSE Bug 1192903 for CVE-2021-3973",
"url": "https://bugzilla.suse.com/1192903"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2021-3973",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208649 for CVE-2021-3973",
"url": "https://bugzilla.suse.com/1208649"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2021-3973",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-3973"
},
{
"cve": "CVE-2021-3974",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3974"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Use After Free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3974",
"url": "https://www.suse.com/security/cve/CVE-2021-3974"
},
{
"category": "external",
"summary": "SUSE Bug 1192904 for CVE-2021-3974",
"url": "https://bugzilla.suse.com/1192904"
},
{
"category": "external",
"summary": "SUSE Bug 1206818 for CVE-2021-3974",
"url": "https://bugzilla.suse.com/1206818"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2021-3974",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2021-3974",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-3974"
},
{
"cve": "CVE-2021-3984",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-3984"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-3984",
"url": "https://www.suse.com/security/cve/CVE-2021-3984"
},
{
"category": "external",
"summary": "SUSE Bug 1193298 for CVE-2021-3984",
"url": "https://bugzilla.suse.com/1193298"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-3984"
},
{
"cve": "CVE-2021-4019",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4019"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4019",
"url": "https://www.suse.com/security/cve/CVE-2021-4019"
},
{
"category": "external",
"summary": "SUSE Bug 1193294 for CVE-2021-4019",
"url": "https://bugzilla.suse.com/1193294"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-4019"
},
{
"cve": "CVE-2021-4069",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4069"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Use After Free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4069",
"url": "https://www.suse.com/security/cve/CVE-2021-4069"
},
{
"category": "external",
"summary": "SUSE Bug 1193466 for CVE-2021-4069",
"url": "https://bugzilla.suse.com/1193466"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-4069"
},
{
"cve": "CVE-2021-4136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4136"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4136",
"url": "https://www.suse.com/security/cve/CVE-2021-4136"
},
{
"category": "external",
"summary": "SUSE Bug 1193905 for CVE-2021-4136",
"url": "https://bugzilla.suse.com/1193905"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2021-4136",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208649 for CVE-2021-4136",
"url": "https://bugzilla.suse.com/1208649"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2021-4136",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2021-4136"
},
{
"cve": "CVE-2021-4166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4166"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Out-of-bounds Read",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4166",
"url": "https://www.suse.com/security/cve/CVE-2021-4166"
},
{
"category": "external",
"summary": "SUSE Bug 1194093 for CVE-2021-4166",
"url": "https://bugzilla.suse.com/1194093"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-4166"
},
{
"cve": "CVE-2021-4192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4192"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Use After Free",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4192",
"url": "https://www.suse.com/security/cve/CVE-2021-4192"
},
{
"category": "external",
"summary": "SUSE Bug 1194217 for CVE-2021-4192",
"url": "https://bugzilla.suse.com/1194217"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-4192"
},
{
"cve": "CVE-2021-4193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-4193"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Out-of-bounds Read",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-4193",
"url": "https://www.suse.com/security/cve/CVE-2021-4193"
},
{
"category": "external",
"summary": "SUSE Bug 1194216 for CVE-2021-4193",
"url": "https://bugzilla.suse.com/1194216"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2021-4193"
},
{
"cve": "CVE-2021-46059",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-46059"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-46059",
"url": "https://www.suse.com/security/cve/CVE-2021-46059"
},
{
"category": "external",
"summary": "SUSE Bug 1194556 for CVE-2021-46059",
"url": "https://bugzilla.suse.com/1194556"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2021-46059"
},
{
"cve": "CVE-2022-0128",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0128"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Out-of-bounds Read",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0128",
"url": "https://www.suse.com/security/cve/CVE-2022-0128"
},
{
"category": "external",
"summary": "SUSE Bug 1194388 for CVE-2022-0128",
"url": "https://bugzilla.suse.com/1194388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-0128"
},
{
"cve": "CVE-2022-0213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0213"
}
],
"notes": [
{
"category": "general",
"text": "vim is vulnerable to Heap-based Buffer Overflow",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0213",
"url": "https://www.suse.com/security/cve/CVE-2022-0213"
},
{
"category": "external",
"summary": "SUSE Bug 1194885 for CVE-2022-0213",
"url": "https://bugzilla.suse.com/1194885"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0213"
},
{
"cve": "CVE-2022-0261",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0261"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0261",
"url": "https://www.suse.com/security/cve/CVE-2022-0261"
},
{
"category": "external",
"summary": "SUSE Bug 1194872 for CVE-2022-0261",
"url": "https://bugzilla.suse.com/1194872"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0261"
},
{
"cve": "CVE-2022-0318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0318"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0318",
"url": "https://www.suse.com/security/cve/CVE-2022-0318"
},
{
"category": "external",
"summary": "SUSE Bug 1195004 for CVE-2022-0318",
"url": "https://bugzilla.suse.com/1195004"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0318"
},
{
"cve": "CVE-2022-0319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0319"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0319",
"url": "https://www.suse.com/security/cve/CVE-2022-0319"
},
{
"category": "external",
"summary": "SUSE Bug 1195066 for CVE-2022-0319",
"url": "https://bugzilla.suse.com/1195066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-0319"
},
{
"cve": "CVE-2022-0351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0351"
}
],
"notes": [
{
"category": "general",
"text": "Access of Memory Location Before Start of Buffer in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0351",
"url": "https://www.suse.com/security/cve/CVE-2022-0351"
},
{
"category": "external",
"summary": "SUSE Bug 1195126 for CVE-2022-0351",
"url": "https://bugzilla.suse.com/1195126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-0351"
},
{
"cve": "CVE-2022-0359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0359"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0359",
"url": "https://www.suse.com/security/cve/CVE-2022-0359"
},
{
"category": "external",
"summary": "SUSE Bug 1195203 for CVE-2022-0359",
"url": "https://bugzilla.suse.com/1195203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0359"
},
{
"cve": "CVE-2022-0361",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0361"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0361",
"url": "https://www.suse.com/security/cve/CVE-2022-0361"
},
{
"category": "external",
"summary": "SUSE Bug 1195202 for CVE-2022-0361",
"url": "https://bugzilla.suse.com/1195202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0361"
},
{
"cve": "CVE-2022-0392",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0392"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0392",
"url": "https://www.suse.com/security/cve/CVE-2022-0392"
},
{
"category": "external",
"summary": "SUSE Bug 1195332 for CVE-2022-0392",
"url": "https://bugzilla.suse.com/1195332"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0392"
},
{
"cve": "CVE-2022-0407",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0407"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0407",
"url": "https://www.suse.com/security/cve/CVE-2022-0407"
},
{
"category": "external",
"summary": "SUSE Bug 1195354 for CVE-2022-0407",
"url": "https://bugzilla.suse.com/1195354"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2022-0407",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208649 for CVE-2022-0407",
"url": "https://bugzilla.suse.com/1208649"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2022-0407",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2022-0407"
},
{
"cve": "CVE-2022-0413",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0413"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0413",
"url": "https://www.suse.com/security/cve/CVE-2022-0413"
},
{
"category": "external",
"summary": "SUSE Bug 1195356 for CVE-2022-0413",
"url": "https://bugzilla.suse.com/1195356"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2022-0413",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2022-0413",
"url": "https://bugzilla.suse.com/1208651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2022-0413"
},
{
"cve": "CVE-2022-0696",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-0696"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4428.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-0696",
"url": "https://www.suse.com/security/cve/CVE-2022-0696"
},
{
"category": "external",
"summary": "SUSE Bug 1196361 for CVE-2022-0696",
"url": "https://bugzilla.suse.com/1196361"
},
{
"category": "external",
"summary": "SUSE Bug 1205395 for CVE-2022-0696",
"url": "https://bugzilla.suse.com/1205395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-0696"
},
{
"cve": "CVE-2022-1381",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1381"
}
],
"notes": [
{
"category": "general",
"text": "global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1381",
"url": "https://www.suse.com/security/cve/CVE-2022-1381"
},
{
"category": "external",
"summary": "SUSE Bug 1198596 for CVE-2022-1381",
"url": "https://bugzilla.suse.com/1198596"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1381"
},
{
"cve": "CVE-2022-1420",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1420"
}
],
"notes": [
{
"category": "general",
"text": "Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1420",
"url": "https://www.suse.com/security/cve/CVE-2022-1420"
},
{
"category": "external",
"summary": "SUSE Bug 1198748 for CVE-2022-1420",
"url": "https://bugzilla.suse.com/1198748"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1420"
},
{
"cve": "CVE-2022-1616",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1616"
}
],
"notes": [
{
"category": "general",
"text": "Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1616",
"url": "https://www.suse.com/security/cve/CVE-2022-1616"
},
{
"category": "external",
"summary": "SUSE Bug 1199331 for CVE-2022-1616",
"url": "https://bugzilla.suse.com/1199331"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1616"
},
{
"cve": "CVE-2022-1619",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1619"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote execution",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1619",
"url": "https://www.suse.com/security/cve/CVE-2022-1619"
},
{
"category": "external",
"summary": "SUSE Bug 1199333 for CVE-2022-1619",
"url": "https://bugzilla.suse.com/1199333"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1619"
},
{
"cve": "CVE-2022-1620",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1620"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 in GitHub repository vim/vim prior to 8.2.4901. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2729 allows attackers to cause a denial of service (application crash) via a crafted input.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1620",
"url": "https://www.suse.com/security/cve/CVE-2022-1620"
},
{
"category": "external",
"summary": "SUSE Bug 1199334 for CVE-2022-1620",
"url": "https://bugzilla.suse.com/1199334"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1620"
},
{
"cve": "CVE-2022-1720",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1720"
}
],
"notes": [
{
"category": "general",
"text": "Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1720",
"url": "https://www.suse.com/security/cve/CVE-2022-1720"
},
{
"category": "external",
"summary": "SUSE Bug 1200732 for CVE-2022-1720",
"url": "https://bugzilla.suse.com/1200732"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-1720"
},
{
"cve": "CVE-2022-1733",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1733"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.4968.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1733",
"url": "https://www.suse.com/security/cve/CVE-2022-1733"
},
{
"category": "external",
"summary": "SUSE Bug 1199655 for CVE-2022-1733",
"url": "https://bugzilla.suse.com/1199655"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-1733"
},
{
"cve": "CVE-2022-1735",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1735"
}
],
"notes": [
{
"category": "general",
"text": "Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1735",
"url": "https://www.suse.com/security/cve/CVE-2022-1735"
},
{
"category": "external",
"summary": "SUSE Bug 1199651 for CVE-2022-1735",
"url": "https://bugzilla.suse.com/1199651"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1735"
},
{
"cve": "CVE-2022-1771",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1771"
}
],
"notes": [
{
"category": "general",
"text": "Uncontrolled Recursion in GitHub repository vim/vim prior to 8.2.4975.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1771",
"url": "https://www.suse.com/security/cve/CVE-2022-1771"
},
{
"category": "external",
"summary": "SUSE Bug 1199693 for CVE-2022-1771",
"url": "https://bugzilla.suse.com/1199693"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-1771"
},
{
"cve": "CVE-2022-1785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1785"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.4977.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1785",
"url": "https://www.suse.com/security/cve/CVE-2022-1785"
},
{
"category": "external",
"summary": "SUSE Bug 1199745 for CVE-2022-1785",
"url": "https://bugzilla.suse.com/1199745"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1785"
},
{
"cve": "CVE-2022-1796",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1796"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 8.2.4979.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1796",
"url": "https://www.suse.com/security/cve/CVE-2022-1796"
},
{
"category": "external",
"summary": "SUSE Bug 1199747 for CVE-2022-1796",
"url": "https://bugzilla.suse.com/1199747"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1796"
},
{
"cve": "CVE-2022-1851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1851"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1851",
"url": "https://www.suse.com/security/cve/CVE-2022-1851"
},
{
"category": "external",
"summary": "SUSE Bug 1199936 for CVE-2022-1851",
"url": "https://bugzilla.suse.com/1199936"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-1851"
},
{
"cve": "CVE-2022-1897",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1897"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1897",
"url": "https://www.suse.com/security/cve/CVE-2022-1897"
},
{
"category": "external",
"summary": "SUSE Bug 1200010 for CVE-2022-1897",
"url": "https://bugzilla.suse.com/1200010"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1897"
},
{
"cve": "CVE-2022-1898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1898"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1898",
"url": "https://www.suse.com/security/cve/CVE-2022-1898"
},
{
"category": "external",
"summary": "SUSE Bug 1200011 for CVE-2022-1898",
"url": "https://bugzilla.suse.com/1200011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1898"
},
{
"cve": "CVE-2022-1927",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1927"
}
],
"notes": [
{
"category": "general",
"text": "Buffer Over-read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1927",
"url": "https://www.suse.com/security/cve/CVE-2022-1927"
},
{
"category": "external",
"summary": "SUSE Bug 1200012 for CVE-2022-1927",
"url": "https://bugzilla.suse.com/1200012"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1927"
},
{
"cve": "CVE-2022-1968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-1968"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-1968",
"url": "https://www.suse.com/security/cve/CVE-2022-1968"
},
{
"category": "external",
"summary": "SUSE Bug 1200270 for CVE-2022-1968",
"url": "https://bugzilla.suse.com/1200270"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-1968"
},
{
"cve": "CVE-2022-2124",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2124"
}
],
"notes": [
{
"category": "general",
"text": "Buffer Over-read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2124",
"url": "https://www.suse.com/security/cve/CVE-2022-2124"
},
{
"category": "external",
"summary": "SUSE Bug 1200697 for CVE-2022-2124",
"url": "https://bugzilla.suse.com/1200697"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2124"
},
{
"cve": "CVE-2022-2125",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2125"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2125",
"url": "https://www.suse.com/security/cve/CVE-2022-2125"
},
{
"category": "external",
"summary": "SUSE Bug 1200698 for CVE-2022-2125",
"url": "https://bugzilla.suse.com/1200698"
},
{
"category": "external",
"summary": "SUSE Bug 1205395 for CVE-2022-2125",
"url": "https://bugzilla.suse.com/1205395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2125"
},
{
"cve": "CVE-2022-2126",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2126"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2126",
"url": "https://www.suse.com/security/cve/CVE-2022-2126"
},
{
"category": "external",
"summary": "SUSE Bug 1200700 for CVE-2022-2126",
"url": "https://bugzilla.suse.com/1200700"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2126"
},
{
"cve": "CVE-2022-2129",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2129"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2129",
"url": "https://www.suse.com/security/cve/CVE-2022-2129"
},
{
"category": "external",
"summary": "SUSE Bug 1200701 for CVE-2022-2129",
"url": "https://bugzilla.suse.com/1200701"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2129"
},
{
"cve": "CVE-2022-2175",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2175"
}
],
"notes": [
{
"category": "general",
"text": "Buffer Over-read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2175",
"url": "https://www.suse.com/security/cve/CVE-2022-2175"
},
{
"category": "external",
"summary": "SUSE Bug 1200904 for CVE-2022-2175",
"url": "https://bugzilla.suse.com/1200904"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2175"
},
{
"cve": "CVE-2022-2182",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2182"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2182",
"url": "https://www.suse.com/security/cve/CVE-2022-2182"
},
{
"category": "external",
"summary": "SUSE Bug 1200903 for CVE-2022-2182",
"url": "https://bugzilla.suse.com/1200903"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2182"
},
{
"cve": "CVE-2022-2183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2183"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2183",
"url": "https://www.suse.com/security/cve/CVE-2022-2183"
},
{
"category": "external",
"summary": "SUSE Bug 1200902 for CVE-2022-2183",
"url": "https://bugzilla.suse.com/1200902"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2183"
},
{
"cve": "CVE-2022-2206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2206"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2206",
"url": "https://www.suse.com/security/cve/CVE-2022-2206"
},
{
"category": "external",
"summary": "SUSE Bug 1201155 for CVE-2022-2206",
"url": "https://bugzilla.suse.com/1201155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2206"
},
{
"cve": "CVE-2022-2207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2207"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2207",
"url": "https://www.suse.com/security/cve/CVE-2022-2207"
},
{
"category": "external",
"summary": "SUSE Bug 1201153 for CVE-2022-2207",
"url": "https://bugzilla.suse.com/1201153"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2207"
},
{
"cve": "CVE-2022-2208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2208"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.5163.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2208",
"url": "https://www.suse.com/security/cve/CVE-2022-2208"
},
{
"category": "external",
"summary": "SUSE Bug 1201152 for CVE-2022-2208",
"url": "https://bugzilla.suse.com/1201152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2208"
},
{
"cve": "CVE-2022-2210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2210"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Write in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2210",
"url": "https://www.suse.com/security/cve/CVE-2022-2210"
},
{
"category": "external",
"summary": "SUSE Bug 1201151 for CVE-2022-2210",
"url": "https://bugzilla.suse.com/1201151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2210"
},
{
"cve": "CVE-2022-2231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2231"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2231",
"url": "https://www.suse.com/security/cve/CVE-2022-2231"
},
{
"category": "external",
"summary": "SUSE Bug 1201150 for CVE-2022-2231",
"url": "https://bugzilla.suse.com/1201150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2231"
},
{
"cve": "CVE-2022-2257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2257"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2257",
"url": "https://www.suse.com/security/cve/CVE-2022-2257"
},
{
"category": "external",
"summary": "SUSE Bug 1201154 for CVE-2022-2257",
"url": "https://bugzilla.suse.com/1201154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2257"
},
{
"cve": "CVE-2022-2264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2264"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2264",
"url": "https://www.suse.com/security/cve/CVE-2022-2264"
},
{
"category": "external",
"summary": "SUSE Bug 1201132 for CVE-2022-2264",
"url": "https://bugzilla.suse.com/1201132"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2264"
},
{
"cve": "CVE-2022-2284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2284"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2284",
"url": "https://www.suse.com/security/cve/CVE-2022-2284"
},
{
"category": "external",
"summary": "SUSE Bug 1201133 for CVE-2022-2284",
"url": "https://bugzilla.suse.com/1201133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2284"
},
{
"cve": "CVE-2022-2285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2285"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2285",
"url": "https://www.suse.com/security/cve/CVE-2022-2285"
},
{
"category": "external",
"summary": "SUSE Bug 1201134 for CVE-2022-2285",
"url": "https://bugzilla.suse.com/1201134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2285"
},
{
"cve": "CVE-2022-2286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2286"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2286",
"url": "https://www.suse.com/security/cve/CVE-2022-2286"
},
{
"category": "external",
"summary": "SUSE Bug 1201135 for CVE-2022-2286",
"url": "https://bugzilla.suse.com/1201135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2286"
},
{
"cve": "CVE-2022-2287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2287"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2287",
"url": "https://www.suse.com/security/cve/CVE-2022-2287"
},
{
"category": "external",
"summary": "SUSE Bug 1201136 for CVE-2022-2287",
"url": "https://bugzilla.suse.com/1201136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2287"
},
{
"cve": "CVE-2022-2304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2304"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2304",
"url": "https://www.suse.com/security/cve/CVE-2022-2304"
},
{
"category": "external",
"summary": "SUSE Bug 1201249 for CVE-2022-2304",
"url": "https://bugzilla.suse.com/1201249"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2304"
},
{
"cve": "CVE-2022-2343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2343"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0044.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2343",
"url": "https://www.suse.com/security/cve/CVE-2022-2343"
},
{
"category": "external",
"summary": "SUSE Bug 1201356 for CVE-2022-2343",
"url": "https://bugzilla.suse.com/1201356"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2343"
},
{
"cve": "CVE-2022-2344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2344"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0045.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2344",
"url": "https://www.suse.com/security/cve/CVE-2022-2344"
},
{
"category": "external",
"summary": "SUSE Bug 1201359 for CVE-2022-2344",
"url": "https://bugzilla.suse.com/1201359"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2344"
},
{
"cve": "CVE-2022-2345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2345"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0046.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2345",
"url": "https://www.suse.com/security/cve/CVE-2022-2345"
},
{
"category": "external",
"summary": "SUSE Bug 1201363 for CVE-2022-2345",
"url": "https://bugzilla.suse.com/1201363"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2345"
},
{
"cve": "CVE-2022-2522",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2522"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0061.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2522",
"url": "https://www.suse.com/security/cve/CVE-2022-2522"
},
{
"category": "external",
"summary": "SUSE Bug 1201863 for CVE-2022-2522",
"url": "https://bugzilla.suse.com/1201863"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2522"
},
{
"cve": "CVE-2022-2571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2571"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0101.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2571",
"url": "https://www.suse.com/security/cve/CVE-2022-2571"
},
{
"category": "external",
"summary": "SUSE Bug 1202046 for CVE-2022-2571",
"url": "https://bugzilla.suse.com/1202046"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2571"
},
{
"cve": "CVE-2022-2580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2580"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0102.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2580",
"url": "https://www.suse.com/security/cve/CVE-2022-2580"
},
{
"category": "external",
"summary": "SUSE Bug 1202049 for CVE-2022-2580",
"url": "https://bugzilla.suse.com/1202049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2580"
},
{
"cve": "CVE-2022-2581",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2581"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0104.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2581",
"url": "https://www.suse.com/security/cve/CVE-2022-2581"
},
{
"category": "external",
"summary": "SUSE Bug 1202050 for CVE-2022-2581",
"url": "https://bugzilla.suse.com/1202050"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2581"
},
{
"cve": "CVE-2022-2598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2598"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Write to API in GitHub repository vim/vim prior to 9.0.0100.\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2598",
"url": "https://www.suse.com/security/cve/CVE-2022-2598"
},
{
"category": "external",
"summary": "SUSE Bug 1202051 for CVE-2022-2598",
"url": "https://bugzilla.suse.com/1202051"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2598"
},
{
"cve": "CVE-2022-2816",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2816"
}
],
"notes": [
{
"category": "general",
"text": "Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.0212.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2816",
"url": "https://www.suse.com/security/cve/CVE-2022-2816"
},
{
"category": "external",
"summary": "SUSE Bug 1202421 for CVE-2022-2816",
"url": "https://bugzilla.suse.com/1202421"
},
{
"category": "external",
"summary": "SUSE Bug 1203576 for CVE-2022-2816",
"url": "https://bugzilla.suse.com/1203576"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2816"
},
{
"cve": "CVE-2022-2817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2817"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0213.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2817",
"url": "https://www.suse.com/security/cve/CVE-2022-2817"
},
{
"category": "external",
"summary": "SUSE Bug 1202420 for CVE-2022-2817",
"url": "https://bugzilla.suse.com/1202420"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2817"
},
{
"cve": "CVE-2022-2819",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2819"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0211.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2819",
"url": "https://www.suse.com/security/cve/CVE-2022-2819"
},
{
"category": "external",
"summary": "SUSE Bug 1202414 for CVE-2022-2819",
"url": "https://bugzilla.suse.com/1202414"
},
{
"category": "external",
"summary": "SUSE Bug 1203576 for CVE-2022-2819",
"url": "https://bugzilla.suse.com/1203576"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2819"
},
{
"cve": "CVE-2022-2845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2845"
}
],
"notes": [
{
"category": "general",
"text": "Improper Validation of Specified Quantity in Input in GitHub repository vim/vim prior to 9.0.0218.\n\n",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2845",
"url": "https://www.suse.com/security/cve/CVE-2022-2845"
},
{
"category": "external",
"summary": "SUSE Bug 1202515 for CVE-2022-2845",
"url": "https://bugzilla.suse.com/1202515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2845"
},
{
"cve": "CVE-2022-2849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2849"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0220.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2849",
"url": "https://www.suse.com/security/cve/CVE-2022-2849"
},
{
"category": "external",
"summary": "SUSE Bug 1202512 for CVE-2022-2849",
"url": "https://bugzilla.suse.com/1202512"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2849"
},
{
"cve": "CVE-2022-2862",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2862"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0221.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2862",
"url": "https://www.suse.com/security/cve/CVE-2022-2862"
},
{
"category": "external",
"summary": "SUSE Bug 1202511 for CVE-2022-2862",
"url": "https://bugzilla.suse.com/1202511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2862"
},
{
"cve": "CVE-2022-2874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2874"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0224.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2874",
"url": "https://www.suse.com/security/cve/CVE-2022-2874"
},
{
"category": "external",
"summary": "SUSE Bug 1202552 for CVE-2022-2874",
"url": "https://bugzilla.suse.com/1202552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2874"
},
{
"cve": "CVE-2022-2889",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2889"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0225.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2889",
"url": "https://www.suse.com/security/cve/CVE-2022-2889"
},
{
"category": "external",
"summary": "SUSE Bug 1202599 for CVE-2022-2889",
"url": "https://bugzilla.suse.com/1202599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2889"
},
{
"cve": "CVE-2022-2923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2923"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0240.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2923",
"url": "https://www.suse.com/security/cve/CVE-2022-2923"
},
{
"category": "external",
"summary": "SUSE Bug 1202687 for CVE-2022-2923",
"url": "https://bugzilla.suse.com/1202687"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2923"
},
{
"cve": "CVE-2022-2946",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2946"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0246.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2946",
"url": "https://www.suse.com/security/cve/CVE-2022-2946"
},
{
"category": "external",
"summary": "SUSE Bug 1202689 for CVE-2022-2946",
"url": "https://bugzilla.suse.com/1202689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2946"
},
{
"cve": "CVE-2022-2980",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2980"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0259.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2980",
"url": "https://www.suse.com/security/cve/CVE-2022-2980"
},
{
"category": "external",
"summary": "SUSE Bug 1203155 for CVE-2022-2980",
"url": "https://bugzilla.suse.com/1203155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-2980"
},
{
"cve": "CVE-2022-2982",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-2982"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0260.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-2982",
"url": "https://www.suse.com/security/cve/CVE-2022-2982"
},
{
"category": "external",
"summary": "SUSE Bug 1203152 for CVE-2022-2982",
"url": "https://bugzilla.suse.com/1203152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-2982"
},
{
"cve": "CVE-2022-3016",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3016"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0286.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3016",
"url": "https://www.suse.com/security/cve/CVE-2022-3016"
},
{
"category": "external",
"summary": "SUSE Bug 1202862 for CVE-2022-3016",
"url": "https://bugzilla.suse.com/1202862"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-3016"
},
{
"cve": "CVE-2022-3037",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3037"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0322.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3037",
"url": "https://www.suse.com/security/cve/CVE-2022-3037"
},
{
"category": "external",
"summary": "SUSE Bug 1202962 for CVE-2022-3037",
"url": "https://bugzilla.suse.com/1202962"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "low"
}
],
"title": "CVE-2022-3037"
},
{
"cve": "CVE-2022-3099",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3099"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0360.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3099",
"url": "https://www.suse.com/security/cve/CVE-2022-3099"
},
{
"category": "external",
"summary": "SUSE Bug 1203110 for CVE-2022-3099",
"url": "https://bugzilla.suse.com/1203110"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3099"
},
{
"cve": "CVE-2022-3134",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3134"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0389.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3134",
"url": "https://www.suse.com/security/cve/CVE-2022-3134"
},
{
"category": "external",
"summary": "SUSE Bug 1203194 for CVE-2022-3134",
"url": "https://bugzilla.suse.com/1203194"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3134"
},
{
"cve": "CVE-2022-3153",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3153"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0404.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3153",
"url": "https://www.suse.com/security/cve/CVE-2022-3153"
},
{
"category": "external",
"summary": "SUSE Bug 1203272 for CVE-2022-3153",
"url": "https://bugzilla.suse.com/1203272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3153"
},
{
"cve": "CVE-2022-3234",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3234"
}
],
"notes": [
{
"category": "general",
"text": "Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0483.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3234",
"url": "https://www.suse.com/security/cve/CVE-2022-3234"
},
{
"category": "external",
"summary": "SUSE Bug 1203508 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1203508"
},
{
"category": "external",
"summary": "SUSE Bug 1206240 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1206240"
},
{
"category": "external",
"summary": "SUSE Bug 1208002 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1208002"
},
{
"category": "external",
"summary": "SUSE Bug 1208308 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1208308"
},
{
"category": "external",
"summary": "SUSE Bug 1208651 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1208651"
},
{
"category": "external",
"summary": "SUSE Bug 1209329 for CVE-2022-3234",
"url": "https://bugzilla.suse.com/1209329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2022-3234"
},
{
"cve": "CVE-2022-3235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3235"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0490.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3235",
"url": "https://www.suse.com/security/cve/CVE-2022-3235"
},
{
"category": "external",
"summary": "SUSE Bug 1203509 for CVE-2022-3235",
"url": "https://bugzilla.suse.com/1203509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3235"
},
{
"cve": "CVE-2022-3278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3278"
}
],
"notes": [
{
"category": "general",
"text": "NULL Pointer Dereference in GitHub repository vim/vim prior to 9.0.0552.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3278",
"url": "https://www.suse.com/security/cve/CVE-2022-3278"
},
{
"category": "external",
"summary": "SUSE Bug 1203799 for CVE-2022-3278",
"url": "https://bugzilla.suse.com/1203799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3278"
},
{
"cve": "CVE-2022-3296",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3296"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0577.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3296",
"url": "https://www.suse.com/security/cve/CVE-2022-3296"
},
{
"category": "external",
"summary": "SUSE Bug 1203796 for CVE-2022-3296",
"url": "https://bugzilla.suse.com/1203796"
},
{
"category": "external",
"summary": "SUSE Bug 1205395 for CVE-2022-3296",
"url": "https://bugzilla.suse.com/1205395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3296"
},
{
"cve": "CVE-2022-3297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3297"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0579.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3297",
"url": "https://www.suse.com/security/cve/CVE-2022-3297"
},
{
"category": "external",
"summary": "SUSE Bug 1203797 for CVE-2022-3297",
"url": "https://bugzilla.suse.com/1203797"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3297"
},
{
"cve": "CVE-2022-3324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3324"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.0598.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3324",
"url": "https://www.suse.com/security/cve/CVE-2022-3324"
},
{
"category": "external",
"summary": "SUSE Bug 1203820 for CVE-2022-3324",
"url": "https://bugzilla.suse.com/1203820"
},
{
"category": "external",
"summary": "SUSE Bug 1205395 for CVE-2022-3324",
"url": "https://bugzilla.suse.com/1205395"
},
{
"category": "external",
"summary": "SUSE Bug 1206240 for CVE-2022-3324",
"url": "https://bugzilla.suse.com/1206240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "important"
}
],
"title": "CVE-2022-3324"
},
{
"cve": "CVE-2022-3352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3352"
}
],
"notes": [
{
"category": "general",
"text": "Use After Free in GitHub repository vim/vim prior to 9.0.0614.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3352",
"url": "https://www.suse.com/security/cve/CVE-2022-3352"
},
{
"category": "external",
"summary": "SUSE Bug 1203924 for CVE-2022-3352",
"url": "https://bugzilla.suse.com/1203924"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3352"
},
{
"cve": "CVE-2022-3705",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-3705"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was found in vim and classified as problematic. Affected by this issue is the function qf_update_buffer of the file quickfix.c of the component autocmd Handler. The manipulation leads to use after free. The attack may be launched remotely. Upgrading to version 9.0.0805 is able to address this issue. The name of the patch is d0fab10ed2a86698937e3c3fed2f10bd9bb5e731. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-212324.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-3705",
"url": "https://www.suse.com/security/cve/CVE-2022-3705"
},
{
"category": "external",
"summary": "SUSE Bug 1204779 for CVE-2022-3705",
"url": "https://bugzilla.suse.com/1204779"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP2-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP2-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP3-BCL:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP4-LTSS:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:gvim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-9.0.0814-17.9.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-9.0.0814-17.9.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud 9:vim-data-common-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:gvim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-9.0.0814-17.9.1.x86_64",
"SUSE OpenStack Cloud Crowbar 9:vim-data-9.0.0814-17.9.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:vim-data-common-9.0.0814-17.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2022-12-27T04:16:45Z",
"details": "moderate"
}
],
"title": "CVE-2022-3705"
}
]
}
SUSE-SU-2017:1712-1
Vulnerability from csaf_suse - Published: 2017-06-28 19:15 - Updated: 2017-06-28 19:15Summary
Security update for vim
Notes
Title of the patch
Security update for vim
Description of the patch
This update for vim fixes the following issues:
Security issues fixed:
- CVE-2017-5953: Fixed a possible overflow with corrupted spell file (bsc#1024724)
- CVE-2017-6350: Fixed a possible overflow when reading a corrupted undo file (bsc#1027053)
- CVE-2017-6349: Fixed a possible overflow when reading a corrupted undo file (bsc#1027057)
Non security issues fixed:
- Speed up YAML syntax highlighting (bsc#1018870)
Patchnames
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1063,SUSE-SLE-DESKTOP-12-SP2-2017-1063,SUSE-SLE-RPI-12-SP2-2017-1063,SUSE-SLE-SERVER-12-SP2-2017-1063
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for vim",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThis update for vim fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2017-5953: Fixed a possible overflow with corrupted spell file (bsc#1024724)\n- CVE-2017-6350: Fixed a possible overflow when reading a corrupted undo file (bsc#1027053)\n- CVE-2017-6349: Fixed a possible overflow when reading a corrupted undo file (bsc#1027057)\n\n\nNon security issues fixed:\n\n- Speed up YAML syntax highlighting (bsc#1018870)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-1063,SUSE-SLE-DESKTOP-12-SP2-2017-1063,SUSE-SLE-RPI-12-SP2-2017-1063,SUSE-SLE-SERVER-12-SP2-2017-1063",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_1712-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:1712-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171712-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:1712-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-June/002990.html"
},
{
"category": "self",
"summary": "SUSE Bug 1018870",
"url": "https://bugzilla.suse.com/1018870"
},
{
"category": "self",
"summary": "SUSE Bug 1024724",
"url": "https://bugzilla.suse.com/1024724"
},
{
"category": "self",
"summary": "SUSE Bug 1027053",
"url": "https://bugzilla.suse.com/1027053"
},
{
"category": "self",
"summary": "SUSE Bug 1027057",
"url": "https://bugzilla.suse.com/1027057"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-5953 page",
"url": "https://www.suse.com/security/cve/CVE-2017-5953/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6349 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6349/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-6350 page",
"url": "https://www.suse.com/security/cve/CVE-2017-6350/"
}
],
"title": "Security update for vim",
"tracking": {
"current_release_date": "2017-06-28T19:15:12Z",
"generator": {
"date": "2017-06-28T19:15:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:1712-1",
"initial_release_date": "2017-06-28T19:15:12Z",
"revision_history": [
{
"date": "2017-06-28T19:15:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "gvim-7.4.326-16.1.aarch64",
"product": {
"name": "gvim-7.4.326-16.1.aarch64",
"product_id": "gvim-7.4.326-16.1.aarch64"
}
},
{
"category": "product_version",
"name": "vim-7.4.326-16.1.aarch64",
"product": {
"name": "vim-7.4.326-16.1.aarch64",
"product_id": "vim-7.4.326-16.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "vim-data-7.4.326-16.1.noarch",
"product": {
"name": "vim-data-7.4.326-16.1.noarch",
"product_id": "vim-data-7.4.326-16.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-7.4.326-16.1.ppc64le",
"product": {
"name": "gvim-7.4.326-16.1.ppc64le",
"product_id": "gvim-7.4.326-16.1.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-7.4.326-16.1.ppc64le",
"product": {
"name": "vim-7.4.326-16.1.ppc64le",
"product_id": "vim-7.4.326-16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-7.4.326-16.1.s390x",
"product": {
"name": "gvim-7.4.326-16.1.s390x",
"product_id": "gvim-7.4.326-16.1.s390x"
}
},
{
"category": "product_version",
"name": "vim-7.4.326-16.1.s390x",
"product": {
"name": "vim-7.4.326-16.1.s390x",
"product_id": "vim-7.4.326-16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "gvim-7.4.326-16.1.x86_64",
"product": {
"name": "gvim-7.4.326-16.1.x86_64",
"product_id": "gvim-7.4.326-16.1.x86_64"
}
},
{
"category": "product_version",
"name": "vim-7.4.326-16.1.x86_64",
"product": {
"name": "vim-7.4.326-16.1.x86_64",
"product_id": "vim-7.4.326-16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sled:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64"
},
"product_reference": "gvim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64"
},
"product_reference": "vim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-7.4.326-16.1.noarch as component of SUSE Linux Enterprise Desktop 12 SP2",
"product_id": "SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch"
},
"product_reference": "vim-data-7.4.326-16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64"
},
"product_reference": "gvim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64"
},
"product_reference": "vim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-7.4.326-16.1.noarch as component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2",
"product_id": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch"
},
"product_reference": "vim-data-7.4.326-16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for Raspberry Pi 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64"
},
"product_reference": "gvim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le"
},
"product_reference": "gvim-7.4.326-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x"
},
"product_reference": "gvim-7.4.326-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64"
},
"product_reference": "gvim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64"
},
"product_reference": "vim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le"
},
"product_reference": "vim-7.4.326-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.s390x as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x"
},
"product_reference": "vim-7.4.326-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64"
},
"product_reference": "vim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-7.4.326-16.1.noarch as component of SUSE Linux Enterprise Server 12 SP2",
"product_id": "SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch"
},
"product_reference": "vim-data-7.4.326-16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64"
},
"product_reference": "gvim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le"
},
"product_reference": "gvim-7.4.326-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x"
},
"product_reference": "gvim-7.4.326-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64"
},
"product_reference": "gvim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64"
},
"product_reference": "vim-7.4.326-16.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le"
},
"product_reference": "vim-7.4.326-16.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x"
},
"product_reference": "vim-7.4.326-16.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-7.4.326-16.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64"
},
"product_reference": "vim-7.4.326-16.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-data-7.4.326-16.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
},
"product_reference": "vim-data-7.4.326-16.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-5953",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-5953"
}
],
"notes": [
{
"category": "general",
"text": "vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-5953",
"url": "https://www.suse.com/security/cve/CVE-2017-5953"
},
{
"category": "external",
"summary": "SUSE Bug 1024724 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1024724"
},
{
"category": "external",
"summary": "SUSE Bug 1123143 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1123143"
},
{
"category": "external",
"summary": "SUSE Bug 1173534 for CVE-2017-5953",
"url": "https://bugzilla.suse.com/1173534"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-28T19:15:12Z",
"details": "important"
}
],
"title": "CVE-2017-5953"
},
{
"cve": "CVE-2017-6349",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6349"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6349",
"url": "https://www.suse.com/security/cve/CVE-2017-6349"
},
{
"category": "external",
"summary": "SUSE Bug 1027057 for CVE-2017-6349",
"url": "https://bugzilla.suse.com/1027057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-28T19:15:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-6349"
},
{
"cve": "CVE-2017-6350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-6350"
}
],
"notes": [
{
"category": "general",
"text": "An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-6350",
"url": "https://www.suse.com/security/cve/CVE-2017-6350"
},
{
"category": "external",
"summary": "SUSE Bug 1027053 for CVE-2017-6350",
"url": "https://bugzilla.suse.com/1027053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Desktop 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Desktop 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:vim-data-7.4.326-16.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:gvim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-7.4.326-16.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:vim-data-7.4.326-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-06-28T19:15:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-6350"
}
]
}
CNVD-2017-02554
Vulnerability from cnvd - Published: 2017-03-09
VLAI Severity ?
Title
Vim本地整数溢出漏洞(CNVD-2017-02554)
Description
Vim是一款开源的、可配置的用于创建和更改任何类型文本的文本编辑器,它可在大多数UNIX和AppleOSX中使用。
Vim存在本地整数溢出漏洞。由于程序未能充分限制检查用户提供的数据,攻击者可以利用漏洞在受影响的应用程序的上下文中执行任意代码。失败的漏洞尝试可能会导致拒绝服务条件。
Severity
中
Patch Name
Vim本地整数溢出漏洞(CNVD-2017-02554)的补丁
Patch Description
Vim是一款开源的、可配置的用于创建和更改任何类型文本的文本编辑器,它可在大多数UNIX和AppleOSX中使用。
Vim存在本地整数溢出漏洞。由于程序未能充分限制检查用户提供的数据,攻击者可以利用漏洞在受影响的应用程序的上下文中执行任意代码。失败的漏洞尝试可能会导致拒绝服务条件。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已经发布了升级补丁以修复此安全问题,详情请关注厂商主页: https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y
Reference
https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y
Impacted products
| Name | VIM Vim <=8.0.0376 |
|---|
{
"bids": {
"bid": {
"bidNumber": "96451"
}
},
"cves": {
"cve": {
"cveNumber": "CVE-2017-6349",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6349"
}
},
"description": "Vim\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u3001\u53ef\u914d\u7f6e\u7684\u7528\u4e8e\u521b\u5efa\u548c\u66f4\u6539\u4efb\u4f55\u7c7b\u578b\u6587\u672c\u7684\u6587\u672c\u7f16\u8f91\u5668\uff0c\u5b83\u53ef\u5728\u5927\u591a\u6570UNIX\u548cAppleOSX\u4e2d\u4f7f\u7528\u3002\r\n\r\nVim\u5b58\u5728\u672c\u5730\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\u3002\u7531\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u9650\u5236\u68c0\u67e5\u7528\u6237\u63d0\u4f9b\u7684\u6570\u636e\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u5931\u8d25\u7684\u6f0f\u6d1e\u5c1d\u8bd5\u53ef\u80fd\u4f1a\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6761\u4ef6\u3002",
"discovererName": "Vim",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8be6\u60c5\u8bf7\u5173\u6ce8\u5382\u5546\u4e3b\u9875:\r\nhttps://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-02554",
"openTime": "2017-03-09",
"patchDescription": "Vim\u662f\u4e00\u6b3e\u5f00\u6e90\u7684\u3001\u53ef\u914d\u7f6e\u7684\u7528\u4e8e\u521b\u5efa\u548c\u66f4\u6539\u4efb\u4f55\u7c7b\u578b\u6587\u672c\u7684\u6587\u672c\u7f16\u8f91\u5668\uff0c\u5b83\u53ef\u5728\u5927\u591a\u6570UNIX\u548cAppleOSX\u4e2d\u4f7f\u7528\u3002\r\n\r\nVim\u5b58\u5728\u672c\u5730\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\u3002\u7531\u4e8e\u7a0b\u5e8f\u672a\u80fd\u5145\u5206\u9650\u5236\u68c0\u67e5\u7528\u6237\u63d0\u4f9b\u7684\u6570\u636e\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6f0f\u6d1e\u5728\u53d7\u5f71\u54cd\u7684\u5e94\u7528\u7a0b\u5e8f\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u5931\u8d25\u7684\u6f0f\u6d1e\u5c1d\u8bd5\u53ef\u80fd\u4f1a\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6761\u4ef6\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Vim\u672c\u5730\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2017-02554\uff09\u7684\u8865\u4e01",
"products": {
"product": "VIM Vim \u003c=8.0.0376"
},
"referenceLink": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y",
"serverity": "\u4e2d",
"submitTime": "2017-02-28",
"title": "Vim\u672c\u5730\u6574\u6570\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2017-02554\uff09"
}
GHSA-PPCR-6XHQ-Q423
Vulnerability from github – Published: 2022-05-14 03:07 – Updated: 2025-04-20 03:33
VLAI?
Details
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.
Severity ?
9.8 (Critical)
{
"affected": [],
"aliases": [
"CVE-2017-6349"
],
"database_specific": {
"cwe_ids": [
"CWE-190"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-02-27T07:59:00Z",
"severity": "CRITICAL"
},
"details": "An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows.",
"id": "GHSA-ppcr-6xhq-q423",
"modified": "2025-04-20T03:33:26Z",
"published": "2022-05-14T03:07:23Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-6349"
},
{
"type": "WEB",
"url": "https://github.com/vim/vim/commit/3eb1637b1bba19519885dd6d377bd5596e91d22c"
},
{
"type": "WEB",
"url": "https://groups.google.com/forum/#!topic/vim_dev/LAgsTcdSfNA"
},
{
"type": "WEB",
"url": "https://groups.google.com/forum/#!topic/vim_dev/QPZc0CY9j3Y"
},
{
"type": "WEB",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/LAgsTcdSfNA"
},
{
"type": "WEB",
"url": "https://groups.google.com/forum/#%21topic/vim_dev/QPZc0CY9j3Y"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201706-26"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/4309-1"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/96451"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1037949"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…