vim 2:8.2.2434-1ubuntu1.3 source package in Ubuntu
Changelog
vim (2:8.2.2434-1ubuntu1.3) hirsute-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service when using CTRL+w+f with an empty filename
- debian/patches/CVE-2021-3973-1.patch: Ensure filename is checked for
zero length in src/findfile.c, src/normal.c and
src/testdir/test_visual.vim
- debian/patches/CVE-2021-3973-2.patch: Fix for failing test in
src/findfile.c
- CVE-2021-3973
* SECURITY UPDATE: Use-after-free issue in regular expression engine when
using a mark, could lead to a denial of service or code execution.
- debian/patches/CVE-2021-3974.patch: Ensure check for free is made when
processing mark in src/regexp_nfa.c, src/testdir/test_regexp_latin.vim
- CVE-2021-3974
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service or possible code execution when C-indenting
- debian/patches/CVE-2021-3984.patch: Fix memory access issue by correctly
dereferencing cursor position in src/cindent.c and
src/testdir/test_cindent.vim
- CVE-2021-3984
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service when help functions are provided with long command strings
- debian/patches/CVE-2021-4019.patch: Fix handling of strcpy to use safer
vim_snprintf in src/help.c and src/testdir/test_help.vim
- CVE-2021-4019
* SECURITY UPDATE: Use-after-free issue in open command can lead to a denial
of service or possible code execution
- debian/patches/CVE-2021-4069.patch: Fix issue making a copy of the
current line and its address in src/ex_docmd.c and
src/testdir/test_ex_mode.vim
- CVE-2021-4069
-- Ray Veldkamp <email address hidden> Wed, 05 Jan 2022 21:00:18 +1100
Upload details
- Uploaded by:
- Ray Veldkamp
- Uploaded to:
- Hirsute
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- editors
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| vim_8.2.2434.orig.tar.gz | 14.7 MiB | dec2f91bb4f877b2bfdf283ccc3d94f99f436a225bd8a9b5e3d422f95c56d702 |
| vim_8.2.2434-1ubuntu1.3.debian.tar.xz | 212.1 KiB | 545f5301f6f4eb2239ce3fd6da60a8ebaf400e95dfade699af55846686dae4ed |
| vim_8.2.2434-1ubuntu1.3.dsc | 2.9 KiB | 444865d8a57c309954e8a661cfddcc116cd02d32b5f4f9394d15ef86c948068e |
Available diffs
Binary packages built by this source
- vim: No summary available for vim in ubuntu hirsute.
No description available for vim in ubuntu hirsute.
- vim-athena: No summary available for vim-athena in ubuntu hirsute.
No description available for vim-athena in ubuntu hirsute.
- vim-athena-dbgsym: No summary available for vim-athena-dbgsym in ubuntu hirsute.
No description available for vim-athena-dbgsym in ubuntu hirsute.
- vim-common: No summary available for vim-common in ubuntu hirsute.
No description available for vim-common in ubuntu hirsute.
- vim-dbgsym: No summary available for vim-dbgsym in ubuntu hirsute.
No description available for vim-dbgsym in ubuntu hirsute.
- vim-doc: No summary available for vim-doc in ubuntu hirsute.
No description available for vim-doc in ubuntu hirsute.
- vim-gtk: No summary available for vim-gtk in ubuntu hirsute.
No description available for vim-gtk in ubuntu hirsute.
- vim-gtk3: No summary available for vim-gtk3 in ubuntu hirsute.
No description available for vim-gtk3 in ubuntu hirsute.
- vim-gtk3-dbgsym: No summary available for vim-gtk3-dbgsym in ubuntu hirsute.
No description available for vim-gtk3-dbgsym in ubuntu hirsute.
- vim-gui-common: No summary available for vim-gui-common in ubuntu hirsute.
No description available for vim-gui-common in ubuntu hirsute.
- vim-nox: No summary available for vim-nox in ubuntu hirsute.
No description available for vim-nox in ubuntu hirsute.
- vim-nox-dbgsym: No summary available for vim-nox-dbgsym in ubuntu hirsute.
No description available for vim-nox-dbgsym in ubuntu hirsute.
- vim-runtime: No summary available for vim-runtime in ubuntu hirsute.
No description available for vim-runtime in ubuntu hirsute.
- vim-tiny: No summary available for vim-tiny in ubuntu hirsute.
No description available for vim-tiny in ubuntu hirsute.
- vim-tiny-dbgsym: No summary available for vim-tiny-dbgsym in ubuntu hirsute.
No description available for vim-tiny-dbgsym in ubuntu hirsute.
- xxd: No summary available for xxd in ubuntu hirsute.
No description available for xxd in ubuntu hirsute.
- xxd-dbgsym: No summary available for xxd-dbgsym in ubuntu hirsute.
No description available for xxd-dbgsym in ubuntu hirsute.
