Description

Vim is an open source command line text editor. double-free in dialog_changed() in Vim < v9.1.0648. When abandoning a buffer, Vim may ask the user what to do with the modified buffer. If the user wants the changed buffer to be saved, Vim may create a new Untitled file, if the buffer did not have a name yet. However, when setting the buffer name to Unnamed, Vim will falsely free a pointer twice, leading to a double-free and possibly later to a heap-use-after-free, which can lead to a crash. The issue has been fixed as of Vim patch v9.1.0648.

INFO

Published Date :

2024-08-01T21:44:09.056Z

Last Modified :

2024-11-15T13:08:18.743Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-41965 vulnerability.

Vendors Products
Vim
  • Vim
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-41965.

URL Resource
https://github.com/vim/vim/commit/b29f4abcd4b3382fa746edd1d0562b7b48c cve-icon cve-icon cve-icon
https://github.com/vim/vim/security/advisories/GHSA-46pw-v7qw-xc2f cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-41965 cve-icon
https://security.netapp.com/advisory/ntap-20241115-0002/ cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-41965 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact