Vim < 9.2.0076 基于堆的缓冲区溢出和 OOB 读取 (GHSA-rvj2-jrf9-2phg)

版本 1.3

Mar 17, 2026, 4:16 PM

CVSS metrics ("CVSSv2 score" set to 3.6)
CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P")
CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
CVSSv2 score source (set to "CVE-2026-28420")
CVSSv2 severity (based on CVE-2026-28420, severity decreased from "High" to "Low")
CVSSv3 score source (changed from "CVE-2026-28420" to none)