Bug 1214921 (CVE-2023-4751) - VUL-0: CVE-2023-4751: vim: heap-buffer-overflow in function utfc_ptr2len
Summary: VUL-0: CVE-2023-4751: vim: heap-buffer-overflow in function utfc_ptr2len
Status: RESOLVED NORESPONSE
Alias: CVE-2023-4751
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Major
Target Milestone: ---
Assignee: Martin Schreiner
QA Contact: Security Team bot
URL: https://smash.suse.de/issue/377044/
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2023-09-04 07:10 UTC by Robert Frohl
Modified: 2024-06-19 20:11 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 3 OBSbugzilla Bot 2023-09-11 16:15:03 UTC 
This is an autogenerated message for OBS integration:
This bug (1214921) was mentioned in
https://build.opensuse.org/request/show/1110341 Factory / vim
Comment 4 Zoltan Balogh 2023-09-20 05:42:22 UTC 
The vim in sle11sp2 is on 7.2 version and it is years behind the upstream. Backporting single patches is hardly possible and upgrading to 9.0 may be risky.

Do we really want that?
Comment 5 Martin Schreiner 2024-06-19 20:11:43 UTC 
I'm closing this bug with "no response" since no one replied to Zoltan a long while ago.

So I think it's obsolete/moot. Should the need arise, please reopen it, and assign to me.