SB2017021525 - Integer overflow in neovim (Alpine package)
Published: February 15, 2017
Security Bulletin ID
SB2017021525
Severity
High
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Integer overflow (CVE-ID: CVE-2017-5953)
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.
Remediation
Install update from vendor's website.
References
- https://git.alpinelinux.org/aports/commit/?id=aaf594bc234db11d5ef457511b7b3cebb3bcba46
- https://git.alpinelinux.org/aports/commit/?id=9d6c7756fa25f6d0e5c7f4de50c5b0bace40d217
- https://git.alpinelinux.org/aports/commit/?id=f5bf7a6023c0e044a089cc7cf27278c45e55b064
- https://git.alpinelinux.org/aports/commit/?id=c89b10e08390d23d8fb52750a487c0148042f6d8
- https://git.alpinelinux.org/aports/commit/?id=c739105d99fb24838dc0ea8ad75bdde1f97f05e6
- https://git.alpinelinux.org/aports/commit/?id=70ab2cf105d1d6be0272ef2213cbe36bd59c52c6
- https://git.alpinelinux.org/aports/commit/?id=01f0d4fd347d06d663c4fc820856299c0cfe6c1a
- https://git.alpinelinux.org/aports/commit/?id=de857d392279e7519fef4f4f429952bd28aac10e
- https://git.alpinelinux.org/aports/commit/?id=812244f7ac9b9bc6fc2e875ceaeb65a0e179f789
- https://git.alpinelinux.org/aports/commit/?id=6d469b11e8c82736a7bed57a91c13b5390d043f7