libvterm through 0+bzr726, as used in Vim and other products, mishandles certain out-of-memory conditions, leading to a denial of service (application crash), related to screen.c, state.c, and vterm.c. CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2018-20786 User=admin}