vim 2:8.2.2434-3ubuntu3.2 source package in Ubuntu
Changelog
vim (2:8.2.2434-3ubuntu3.2) impish-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service when using CTRL+w+f with an empty filename
- debian/patches/CVE-2021-3973-1.patch: Ensure filename is checked for
zero length in src/findfile.c, src/normal.c and
src/testdir/test_visual.vim
- debian/patches/CVE-2021-3973-2.patch: Fix for failing test in
src/findfile.c
- CVE-2021-3973
* SECURITY UPDATE: Use-after-free issue in regular expression engine when
using a mark, could lead to a denial of service or code execution.
- debian/patches/CVE-2021-3974.patch: Ensure check for free is made when
processing mark in src/regexp_nfa.c, src/testdir/test_regexp_latin.vim
- CVE-2021-3974
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service or possible code execution when C-indenting
- debian/patches/CVE-2021-3984.patch: Fix memory access issue by correctly
dereferencing cursor position in src/cindent.c and
src/testdir/test_cindent.vim
- CVE-2021-3984
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service when help functions are provided with long command strings
- debian/patches/CVE-2021-4019.patch: Fix handling of strcpy to use safer
vim_snprintf in src/help.c and src/testdir/test_help.vim
- CVE-2021-4019
* SECURITY UPDATE: Use-after-free issue in open command can lead to a denial
of service or possible code execution
- debian/patches/CVE-2021-4069.patch: Fix issue making a copy of the
current line and its address in src/ex_docmd.c and
src/testdir/test_ex_mode.vim
- CVE-2021-4069
-- Ray Veldkamp <email address hidden> Sat, 18 Dec 2021 03:55:33 +1100
Upload details
- Uploaded by:
- Ray Veldkamp
- Uploaded to:
- Impish
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- editors
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| vim_8.2.2434.orig.tar.gz | 14.7 MiB | dec2f91bb4f877b2bfdf283ccc3d94f99f436a225bd8a9b5e3d422f95c56d702 |
| vim_8.2.2434-3ubuntu3.2.debian.tar.xz | 212.6 KiB | 1b89301b905e41e69c34500f7d93652e0b594e8fb6b94ba6762950811478919f |
| vim_8.2.2434-3ubuntu3.2.dsc | 3.0 KiB | 53406ba16e19269d07d115758d0f9d08c95371eeecf35b1949c2b22070010bbb |
Available diffs
Binary packages built by this source
- vim: No summary available for vim in ubuntu impish.
No description available for vim in ubuntu impish.
- vim-athena: No summary available for vim-athena in ubuntu impish.
No description available for vim-athena in ubuntu impish.
- vim-athena-dbgsym: No summary available for vim-athena-dbgsym in ubuntu impish.
No description available for vim-athena-dbgsym in ubuntu impish.
- vim-common: No summary available for vim-common in ubuntu impish.
No description available for vim-common in ubuntu impish.
- vim-dbgsym: No summary available for vim-dbgsym in ubuntu impish.
No description available for vim-dbgsym in ubuntu impish.
- vim-doc: No summary available for vim-doc in ubuntu impish.
No description available for vim-doc in ubuntu impish.
- vim-gtk: No summary available for vim-gtk in ubuntu impish.
No description available for vim-gtk in ubuntu impish.
- vim-gtk3: No summary available for vim-gtk3 in ubuntu impish.
No description available for vim-gtk3 in ubuntu impish.
- vim-gtk3-dbgsym: No summary available for vim-gtk3-dbgsym in ubuntu impish.
No description available for vim-gtk3-dbgsym in ubuntu impish.
- vim-gui-common: No summary available for vim-gui-common in ubuntu impish.
No description available for vim-gui-common in ubuntu impish.
- vim-nox: No summary available for vim-nox in ubuntu impish.
No description available for vim-nox in ubuntu impish.
- vim-nox-dbgsym: No summary available for vim-nox-dbgsym in ubuntu impish.
No description available for vim-nox-dbgsym in ubuntu impish.
- vim-runtime: No summary available for vim-runtime in ubuntu impish.
No description available for vim-runtime in ubuntu impish.
- vim-tiny: No summary available for vim-tiny in ubuntu impish.
No description available for vim-tiny in ubuntu impish.
- vim-tiny-dbgsym: No summary available for vim-tiny-dbgsym in ubuntu impish.
No description available for vim-tiny-dbgsym in ubuntu impish.
- xxd: No summary available for xxd in ubuntu impish.
No description available for xxd in ubuntu impish.
- xxd-dbgsym: No summary available for xxd-dbgsym in ubuntu impish.
No description available for xxd-dbgsym in ubuntu impish.
