<p>Upgrade <code>Amazon-Linux:2</code> <code>vim-data</code> to version 2:9.0.2153-1.amzn2.0.1 or higher.<br>This issue was patched in <code>ALAS2-2024-2452</code>.</p>

Use After Free Affecting vim-data package, versions <2:9.0.2153-1.amzn2.0.1

Snyk CVSS

Attack Complexity High

User Interaction Required

Availability High

Threat Intelligence

EPSS 0.05% (18^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-AMZN2-VIMDATA-6371016
published 5 Mar 2024
disclosed 22 Nov 2023

Report a new vulnerability Found a mistake?

Introduced: 22 Nov 2023

CVE-2023-48706 Open this link in a new tab CWE-416 Open this link in a new tab

How to fix?

Upgrade Amazon-Linux:2 vim-data to version 2:9.0.2153-1.amzn2.0.1 or higher.
This issue was patched in ALAS2-2024-2452.

NVD Description

Note: Versions mentioned in the description apply only to the upstream vim-data package and not the vim-data package as distributed by Amazon-Linux. See How to fix? for Amazon-Linux:2 relevant fixed versions and status.

Vim is a UNIX editor that, prior to version 9.0.2121, has a heap-use-after-free vulnerability. When executing a :s command for the very first time and using a sub-replace-special atom inside the substitution part, it is possible that the recursive :s call causes free-ing of memory which may later then be accessed by the initial :s command. The user must intentionally execute the payload and the whole process is a bit tricky to do since it seems to work only reliably for the very first :s command. It may also cause a crash of Vim. Version 9.0.2121 contains a fix for this issue.