Search CVE reports
211 – 220 of 38797 results
Vim is an open source, command line text editor. From 9.1.1784 until 9.2.0678, when the bundled zip plugin autoload/zip.vim falls back to PowerShell to browse, read, extract, update or delete entries in a zip archive, it builds...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Not affected |
Vim is an open source, command line text editor. Prior to 9.2.0671, when Vim opens a file encrypted with the VimCrypt~04! or VimCrypt~05! method (xchacha20poly1305, requires the +sodium feature) whose body is shorter than a single...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Vulnerable |
Vim is an open source, command line text editor. Prior to 9.2.0670, get_text_props() in src/textprop.c reads a uint16 property count stored inline after a line's text and returns it as the number of 32-byte textprop_T entries that...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Not affected |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, XInclude substitution performed by Nokogiri::XML::Node#do_xinclude replaced each <xi:include> in place, freeing the include node...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Vim is an open source, command line text editor. Prior to 9.2.0663, a Vimscript code injection vulnerability exists in s:NetrwLocalRmFile() in the netrw plugin (runtime/pack/dist/opt/netrw/autoload/netrw.vim) when deleting a local...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Vulnerable |
Vim is an open source, command line text editor. Prior to 9.2.0662, the dump_prefixes() function in src/spell.c walks a spell-file prefix trie iteratively with a depth counter while dumping the prefixes that apply to a word. The...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Vulnerable |
Vim is an open source, command line text editor. Prior to 9.2.0653, the tree_count_words() function in src/spellfile.c fills in the word-count fields of a spell-file word trie by walking it iteratively with a depth counter. The...
1 affected package
vim
| Package | 24.04 LTS |
|---|---|
| vim | Vulnerable |
List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise() collects the values returned by the block into a heap buffer sized to the longer input array, then grows the buffer...
1 affected package
liblist-someutils-xs-perl
| Package | 24.04 LTS |
|---|---|
| liblist-someutils-xs-perl | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its source document alive for garbage collection. If an XPathContext outlived its...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |
Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Document#root= validated only that the new root was a Nokogiri::XML::Node, allowing a DTD node to be set as the...
1 affected package
ruby-nokogiri
| Package | 24.04 LTS |
|---|---|
| ruby-nokogiri | Needs evaluation |