From: Markus Koschany <apo@debian.org>
Date: Mon, 7 Nov 2022 00:03:56 +0100
Subject: CVE-2022-3099

Origin: https://github.com/vim/vim/commit/35d21c6830fc2d68aca838424a0e786821c5891c
---
 src/ex_docmd.c                  |  2 +-
 src/testdir/test_eval_stuff.vim | 14 ++++++++++++++
 2 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/src/ex_docmd.c b/src/ex_docmd.c
index bb8d719..5321962 100644
--- a/src/ex_docmd.c
+++ b/src/ex_docmd.c
@@ -1109,7 +1109,7 @@ do_cmdline(
 
 		    /* Check for the next breakpoint at or after the ":while"
 		     * or ":for". */
-		    if (breakpoint != NULL)
+		    if (breakpoint != NULL && lines_ga.ga_len > current_line)
 		    {
 			*breakpoint = dbg_find_breakpoint(
 			       getline_equal(fgetline, cookie, getsourceline),