Add CVE-2022-0261/vim

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-19 21:10:12 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-19 21:11:41 +0100
commit: b39559810270b26902bf9c68693e1cb43aeaf316 (patch)
tree: 45a1c9a504d8be25324c498e7652891dc3d4895e
parent: 2f2857051adc1edfd98fe8458469a7ae9cf91104 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index e300f24034..bdc4ee71d7 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -353,7 +353,9 @@ CVE-2022-0263 (Unrestricted Upload of File with Dangerous Type in Packagist pimc
 CVE-2022-0262 (Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior ...)
 	NOT-FOR-US: pimcore
 CVE-2022-0261 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/fa795954-8775-4f23-98c6-d4d4d3fe8a82
+	NOTE: https://github.com/vim/vim/commit/9f8c304c8a390ade133bac29963dc8e56ab14cbc (v8.2.4120)
 CVE-2022-0260 (Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimco ...)
 	NOT-FOR-US: pimcore
 CVE-2022-0259
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-19 21:10:12 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-19 21:11:41 +0100
commit	b39559810270b26902bf9c68693e1cb43aeaf316 (patch)
tree	45a1c9a504d8be25324c498e7652891dc3d4895e
parent	2f2857051adc1edfd98fe8458469a7ae9cf91104 (diff)