From f9e8befe5a813c9d03e8762b4d04e2263a29c952 Mon Sep 17 00:00:00 2001
From: "LI, WENJIE" <liwenjie@kylinos.cn>
Date: Wed, 23 Nov 2022 10:59:24 +0800
Subject: [PATCH] add  cve/vim/2022/yaml/CVE-2022-2257.yaml

---
 cve/vim/2022/yaml/CVE-2022-2257.yaml | 19 +++++++++++++++++++
 {debain => debian}/changelog         |  0
 2 files changed, 19 insertions(+)
 create mode 100644 cve/vim/2022/yaml/CVE-2022-2257.yaml
 rename {debain => debian}/changelog (100%)

diff --git a/cve/vim/2022/yaml/CVE-2022-2257.yaml b/cve/vim/2022/yaml/CVE-2022-2257.yaml
new file mode 100644
index 00000000..7b71e39a
--- /dev/null
+++ b/cve/vim/2022/yaml/CVE-2022-2257.yaml
@@ -0,0 +1,19 @@
+id: CVE-2022-2257
+source: https://huntr.dev/bounties/ca581f80-03ba-472a-b820-78f7fd05fe89/
+info:
+  name: Vim是一款基于UNIX平台的编辑器。
+  severity: High
+  description: |
+    Vim 9.0之前版本存在缓冲区错误漏洞，该漏洞源于vim/vim 中存在越界读取。
+  scope-of-influence:
+    vim<9.0
+  reference:
+    - https://nvd.nist.gov/vuln/detail/CVE-2022-2257
+  classification:
+    cvss-metrics: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
+    cvss-score: 7.8
+    cve-id: CVE-2022-2257
+    cwe-id: CWE-125
+    cnvd-id: None
+    kve-id: None
+  tags: cve2022,缓冲区错误
\ No newline at end of file
diff --git a/debain/changelog b/debian/changelog
similarity index 100%
rename from debain/changelog
rename to debian/changelog
-- 
Gitee