Description

The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding a new file to the argument list, this triggers `Buf*` autocommands. If in such an autocommand the buffer that was just opened is closed (including the window where it is shown), this causes the window structure to be freed which contains a reference to the argument list that we are actually modifying. Once the autocommands are completed, the references to the window and argument list are no longer valid and as such cause an use-after-free. Impact is low since the user must either intentionally add some unusual autocommands that wipe a buffer during creation (either manually or by sourcing a malicious plugin), but it will crash Vim. The issue has been fixed as of Vim patch v9.1.0678.

INFO

Published Date :

2024-08-15T23:47:38.255Z

Last Modified :

2024-09-20T16:03:11.152Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-43374 vulnerability.

Vendors Products
Netapp
  • Bootstrap Os
  • Hci Compute Node
Vim
  • Vim
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-43374.

URL Resource
http://www.openwall.com/lists/oss-security/2024/08/15/6 cve-icon
https://github.com/vim/vim/commit/0a6e57b09bc8c76691b367a5babfb79b31b770e8 cve-icon cve-icon cve-icon
https://github.com/vim/vim/security/advisories/GHSA-2w8m-443v-cgvw cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-43374 cve-icon
https://security.netapp.com/advisory/ntap-20240920-0004/ cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-43374 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact