-
vim (2:9.0.1000-4ubuntu3.3) lunar-security; urgency=medium
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-46246.patch: Check that the return value from the
vim_str2nr() function is not larger than INT_MAX and if yes, bail out with
an error.
- CVE-2023-46246
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-48231.patch: If the current window structure is
no longer valid, fail and return before attempting to set win->w_closing
variable.
- CVE-2023-48231
* SECURITY UPDATE: division by zero
- debian/patches/CVE-2023-48232-*.patch: Prevent a floating point exception
when calculating w_skipcol (which can happen with a small window when the
number option is set and cpo+=n).
- CVE-2023-48232
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-48233.patch: If the count after the :s command is
larger than what fits into a (signed) long variable, abort with
e_value_too_large.
- CVE-2023-48233
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-48234.patch: When getting the count for a normal z
command, it may overflow for large counts given. So verify, that we can
safely store the result in a long.
- CVE-2023-48234
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-48235.patch: When parsing relative ex addresses
one may unintentionally cause an overflow (because LONG_MAX - lnum will
overflow for negative addresses).
- CVE-2023-48235
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-48236.patch: When using the z= command, we may
overflow the count with values larger than MAX_INT. So verify that we do
not overflow and in case when an overflow is detected, simply return 0.
- CVE-2023-48236
* SECURITY UPDATE: integer overflow
- debian/patches/CVE-2023-48237.patch: When shifting lines in operator
pending mode and using a very large value, we may overflow the size of
integer. Fix this by using a long variable, testing if the result would
be larger than INT_MAX and if so, indent by INT_MAX value.
- CVE-2023-48237
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-48706.patch: ensure that the sub var always using
allocated memory.
- CVE-2023-48706
-- Fabian Toepfer <email address hidden> Tue, 05 Dec 2023 18:29:58 +0100
-
vim (2:9.0.1000-4ubuntu3.2) lunar-security; urgency=medium
* SECURITY UPDATE: divide-by-zero vulnerability
- debian/patches/CVE-2023-3896-pre.patch: Adjust logic for scrolling to
avoid cursor moving to wrong line when 'foldmethod' is "diff".
- debian/patches/CVE-2023-3896.patch: Add check for width to avoid
division by zero in scroll_cursor_bot.
- CVE-2023-3896
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-4733.patch: Verify oldwin pointer after
reset_VIsual() in do_ecmd.
- CVE-2023-4733
* SECURITY UPDATE: integer overflow vulnerability
- debian/patches/CVE-2023-4734.patch: Check for typeval correctly in
f_fullcommand.
- CVE-2023-4734
* SECURITY UPDATE: out of bounds write vulnerability
- debian/patches/CVE-2023-4735.patch: Add check for buffer size to avoid
overflow in do_addsub.
- CVE-2023-4735
* SECURITY UPDATE: buffer overflow vulnerability
- debian/patches/CVE-2023-4738.patch: Check remaining space in
vim_regsub_both.
- CVE-2023-4738
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-4750.patch: Check buffer is valid before
accessing it.
- CVE-2023-4750
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-4751.patch: Stop Visual mode when using :ball
to avoid illegal memory access.
- CVE-2023-4751
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-4752.patch: validate buffer before accessing it
in ins_compl_get_exp.
- CVE-2023-4752
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-4781.patch: Disallow exchanging windows when
textlock is active in vim_regsub_both.
- CVE-2023-4781
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-5344.patch: Add NULL at end of buffer in
trunc_string.
- CVE-2023-5344
* SECURITY UPDATE: NULL pointer dereference
- debian/patches/CVE-2023-5441.patch: skip gui_scroll when exmode_active
in gui_do_scroll.
- CVE-2023-5441
* SECURITY UPDATE: use-after-free vulnerability
- debian/patches/CVE-2023-5535.patch: block autocommands in
buf_contents_changed.
- CVE-2023-5535
-- Fabian Toepfer <email address hidden> Mon, 16 Oct 2023 17:44:49 +0200
-
vim (2:9.0.1000-4ubuntu3.1) lunar-security; urgency=medium
* SECURITY UPDATE: use of out-of-range pointer offset when fuzzy matching
- debian/patches/CVE-2023-2426.patch: initialize the arrays used to store
match positions.
- CVE-2023-2426
* SECURITY UPDATE: NULL pointer dereference when processing register content
- debian/patches/CVE-2023-2609.patch: check "y_array" is not NULL.
- CVE-2023-2609
* SECURITY UPDATE: integer overflow and excessive memory consumption when
allocating memory for tilde processing in pattern
- debian/patches/CVE-2023-2610.patch: limit the text length to MAXCOL.
- CVE-2023-2610
-- Camila Camargo de Matos <email address hidden> Wed, 24 May 2023 11:26:32 -0300
-
vim (2:9.0.1000-4ubuntu3) lunar; urgency=medium
* Security upload for the devel series (LP: #2013211)
* SECURITY UPDATE: reading past the end of a line when formatting text
- debian/patches/CVE-2023-0433.patch: check for not going over the end of
the line.
- CVE-2023-0433
* SECURITY UPDATE: divide by zero issue
- debian/patches/CVE-2023-0512.patch: divide by zero with 'smoothscroll'
set and a narrow window
- debian/patches/CVE-2023-1127.patch: divide by zero in zero-width window
- CVE-2023-0512
- CVE-2023-1127
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-1170.patch: accessing invalid memory with put
in Visual block mode
- CVE-2023-1170
* SECURITY UPDATE: incorrect calculation of buffer size
- debian/patches/CVE-2023-1175.patch: illegal memory access when using
virtual editing
- CVE-2023-1175
* SECURITY UPDATE: NULL pointer dereference vulnerability
- debian/patches/CVE-2023-1264.patch: using NULL pointer with nested
:open command
- CVE-2023-1264
-- Nishit Majithia <email address hidden> Wed, 29 Mar 2023 18:19:19 +0530
-
vim (2:9.0.1000-4ubuntu2) lunar; urgency=medium
* No-change upload to remove support for ruby3.0.
-- Lucas Kanashiro <email address hidden> Fri, 03 Feb 2023 14:06:49 -0300
-
vim (2:9.0.1000-4ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
- debian/runtime/vimrc:
+ "syntax on" is a sane default for non-tiny Vim.
- debian/patches/debian/ubuntu-grub-syntax.patch:
+ Add Ubuntu-specific "quiet" keyword.
- debian/patches/ubuntu-mouse-off.patch:
+ Mouse mode is actively harmful in some chroots.
- debian/patches/patches/increase_timeout.diff:
+ Increase timeout for the Test_pattern_compile_speed patch.
- debian/patches/0001-fix-flaky-terminal-mode-test.vim:
+ Fix flaky Vim terminal mode test.
- debian/patches/0002-disable-failing-tests-on-ppc64.patch:
+ Disable some tests that were throwing an ENOMEM during build on
ppc64el. The tests are only disabled when building on ppc64el.
* SECURITY UPDATE: invalid memory access with bad 'statusline' value
- debian/patches/CVE-2023-0049.patch: Avoid going over the NUL at the end
- CVE-2023-0049
* SECURITY UPDATE: reading beyond text
- debian/patches/CVE-2023-0051.patch: Add strlen_maxlen() and use it
- CVE-2023-0051
* SECURITY UPDATE: Invalid memory access with recursive substitute expression
- debian/patches/CVE-2023-0054.patch: Check the return value of vim_regsub
- CVE-2023-0054
* SECURITY UPDATE: Invalid memory access with folding and using "L"
- debian/patches/CVE-2023-0288.patch: Prevent the cursor from moving to l0
- CVE-2023-0288
vim (2:9.0.1000-4) unstable; urgency=medium
* Backport patch to fix tests on IPv6-only hosts (Closes: #1027824)
-- Simon Quigley <email address hidden> Tue, 17 Jan 2023 18:16:17 -0600
-
vim (2:9.0.1000-3ubuntu2) lunar; urgency=medium
* Fix test failures on ppc64el.
vim (2:9.0.1000-3ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
- debian/runtime/vimrc:
+ "syntax on" is a sane default for non-tiny Vim.
- debian/patches/debian/ubuntu-grub-syntax.patch:
+ Add Ubuntu-specific "quiet" keyword.
- debian/patches/ubuntu-mouse-off.patch:
+ Mouse mode is actively harmful in some chroots.
- debian/patches/patches/increase_timeout.diff:
+ Increase timeout for the Test_pattern_compile_speed patch.
- debian/patches/0001-fix-flaky-terminal-mode-test.vim:
+ Fix flaky Vim terminal mode test.
- debian/patches/0002-disable-failing-tests-on-ppc64.patch:
+ Disable some tests that were throwing an ENOMEM during build on
ppc64el. The tests are only disabled when building on ppc64el.
- Reverse-applicable (dropped) changes:
+ debian/patches/lunar_lobster.patch: Welcome to the Lunar Lobster!
vim (2:9.0.1000-3) unstable; urgency=medium
* Fix substitution of VIMCUR in vim-common.install (Closes: #1027766)
* Backport v9.0.1129 to fix sporadic Test_range failure
vim (2:9.0.1000-2) unstable; urgency=medium
* Restore man page translations for da, de, and ja (Closes: #1027318)
* Update to debhelper-compat 13
* Remove obsolete maintscript files for versions earlier than oldstable
* Remove PER_VARIANT_FILES handling in debian/rules
* Add future=+lfs to DEB_BUILD_MAINT_OPTIONS
* Backport v9.0.1118 to fix sporadic test failures
* ci: Run tests against installed xxd
* ci: Install python3 for vim tests
* Backport v9.0.1117 to fix bracketed paste with new ncurses
(Closes: #1027674)
vim (2:9.0.1000-1) unstable; urgency=medium
* Merge upstream patch v9.0.1000
+ Security fixes
- 9.0.0882: using freed memory after SpellFileMissing autocmd uses
bwipe, CVE-2022-4292
- 9.0.0947: invalid memory access in substitute with function that goes
to another file (Closes: #1027146, CVE-2022-4141)
* Backport v9.0.1087 to fix test_autocmd flakiness
vim (2:9.0.0813-1ubuntu2) lunar; urgency=medium
* No-change rebuild with Python 3.11 as default
vim (2:9.0.0813-1ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
+ debian/patches/lunar_lobster.patch: Welcome to the Lunar Lobster!
vim (2:9.0.0813-1) unstable; urgency=medium
* Merge upstream patch v9.0.0813
+ syntax/markdown.vim: Fix performance of markdownLinkText highlighting.
(Closes: #994209)
vim (2:9.0.0626-1ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
* Refresh all Ubuntu patches.
* Add lunar_lobster.patch, welcome to the Lunar Lobster!
vim (2:9.0.0626-1) unstable; urgency=medium
* Merge upstream patch v9.0.0626
+ Various CVE fixes (Closes: #1019590)
- 9.0.0246: using freed memory when 'tagfunc' deletes the buffer,
CVE-2022-2946
- 9.0.0260: using freed memory when using 'quickfixtextfunc'
recursively, CVE-2022-2982
- 9.0.0322: crash when no errors and 'quickfixtextfunc' is set,
CVE-2022-3037
- 9.0.0360: crash when invalid line number on :for is ignored,
CVE-2022-3099
- 9.0.0389: crash when 'tagfunc' closes the window, CVE-2022-3134
- 9.0.0483: illegal memory access when replacing in virtualedit mode,
CVE-2022-3234
- 9.0.0490: using freed memory with cmdwin and BufEnter autocmd,
CVE-2022-3235
- 9.0.0530: using freed memory when autocmd changes mark, CVE-2022-3256
- 9.0.0577: buffer underflow with unexpected :finally, CVE-2022-3296
- 9.0.0598: using negative array index with negative width window,
CVE-2022-3324
- 9.0.0614: CVE-2022-3352
+ 9.0.0509: confusing error for "saveas" command with "nofile" buffer
(Closes: #796872)
vim (2:9.0.0242-1ubuntu1) kinetic; urgency=low
* Merge from Debian unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
vim (2:9.0.0242-1) unstable; urgency=medium
* Merge upstream patch v9.0.0242
+ 9.0.241/242: Install the shared syntax files (Closes: #1017856)
* Add historic changelog entry for #947120 fix
* Adjust lintian overrides for new []-format
* Declare compliance with Policy 4.6.1, no changes needed
vim (2:9.0.0229-1) unstable; urgency=medium
* Merge upstream patch v9.0.0229
+ Various CVE fixes
- 9.0.0211: invalid memory access when compiling :lockvar, CVE-2022-2819
- 9.0.0212: invalid memory access when compiling :unlet, CVE-2022-2816
- 9.0.0213: using freed memory with error in assert argument,
CVE-2022-2817
- 9.0.0218: reading before the start of the line, CVE-2022-2845
- 9.0.0220: invalid memory access with for loop over NULL string,
CVE-2022-2849
- 9.0.0221: accessing freed memory if compiling nested function fails,
CVE-2022-2862
- 9.0.0225: using freed memory with multiple line breaks in expression,
CVE-2022-2889
* Add Recommends: xxd to vim-common
* Minor fixes for vim-tiny's fake help file (Closes: #1017715)
* Revert "Temporarily skip Test_Debugger_breakadd_expr", test fixed upstream
vim (2:9.0.0135-1ubuntu1) kinetic; urgency=low
* Merge from Debian unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
* Dropped, no longer needed:
+ debian/patches/debian/update-upstart-syntax.patch: we no longer
support upstart; no reason to carry a patch to an editor to improve
syntax highlighting for upstart files.
+ debian/patches/ubuntu-fix-ftbfs.patch: Resolve FTBFS in kinetic
vim (2:9.0.0135-1) unstable; urgency=medium
* Merge upstream patch v8.2.5172
+ ftplugin/perl.vim: Only add : to 'isfname' in Perl buffers. (Closes:
#761800)
+ ftplugin/tap.vim: Set fold-related options local to the buffer. (Closes:
#954113)
+ syntax/debcontrol.vim: Fix highlighting of sections with a slash (e.g.,
"non-free/utils"). (Closes: #1010839)
+ syntax/tap.vim: Match TODO/SKIP markers case-insensitively. (Closes:
#954016)
+ syntax/perl.vim: Properly highlight code on the same line as the start
of a here-doc block. (Closes: #136455)
+ Various CVE fixes (Closes: #1015984, #1016068)
- 8.2.5043: can open a cmdline window from a substitute expression,
CVE-2022-1942
- 8.2.5050: using freed memory when searching for pattern in path,
CVE-2022-1968
- 8.2.5063: error for a command may go over the end of IObuff,
CVE-2022-2000
- 8.2.5120: searching for quotes may go over the end of the line,
CVE-2022-2124
- 8.2.5122: lisp indenting may run over the end of the line,
CVE-2022-2125
- 8.2.5123: using invalid index when looking for spell suggestions,
CVE-2022-2126
- 8.2.5126: substitute may overrun destination buffer, CVE-2022-2129
- 9.0.0018: going over the end of the typeahead, CVE-2022-2285
- 9.0.0025: accessing beyond allocated memory with the cmdline window,
CVE-2022-2288
- 9.0.0035: spell dump may go beyond end of an array, CVE-2022-2304
- 8.2.5162: reading before the start of the line with BS in Replace
mode, CVE-2022-2207
- 8.2.4895: buffer overflow with invalid command with composing chars,
CVE-2022-1616
- 8.2.4899: with latin1 encoding CTRL-W might go before the cmdline,
CVE-2022-1619
- 8.2.4919: can add invalid bytes with :spellgood, CVE-2022-1621
- 8.2.4956: reading past end of line with "gf" in Visual block mode,
CVE-2022-1720
- 8.2.4977: memory access error when substitute expression changes
window, CVE-2022-1785
- 8.2.5013: after text formatting cursor may be in an invalid position,
CVE-2022-1851
- 8.2.5023: substitute overwrites allocated buffer, CVE-2022-1897
- 8.2.5024: using freed memory with "]d", CVE-2022-1898
- 9.0.0060: accessing uninitialized memory when completing long line,
CVE-2022-2522
* Temporarily skip Test_Debugger_breakadd_expr
* Remove "Depends: xxd" from vim-common (Closes: #1007887)
* Suppress error about missing defaults.vim in vim-tiny (Closes: #1004118)
vim (2:8.2.5166-0ubuntu1) kinetic; urgency=medium
* New upstream version.
vim (2:8.2.4793-1ubuntu2) kinetic; urgency=medium
* Resolve FTBFS in kinetic (LP: #1979336)
vim (2:8.2.4793-1ubuntu1) kinetic; urgency=medium
* Merge from Debian unstable, remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/debian/update-upstart-syntax.patch:
Add setuid and setgid to syntax file.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
* Update my patch adding Kinetic given the new upstream changes. The patch
only adds Kinetic at this point.
vim (2:8.2.4793-1) unstable; urgency=medium
* Merge upstream patch v8.2.4793
vim (2:8.2.4659-1) unstable; urgency=medium
* Merge upstream patch v8.2.4659
+ 8.2.4151: reading beyond end of a line (Closes: #1004859, CVE-2022-0318)
+ autoload/phpcomplete.vim: Fix E565 error in omni-completion (Closes:
#1008710)
* Remove outdated NEWS and README.Debian entries
* README.Debian: Fix links to vim-policy
* Improve docs about purpose and effect of defaults.vim (Closes: #856273)
* Define system (g)vimrc location as /etc/vim/(g)vimrc, rather than
symlinking from /usr/share/vim/(g)vimrc -> /etc/vim/(g)vimrc.
* Replace vim-athena with vim-motif, Athena GUI deprecated upstream
* Remove lintian override for rgb.txt, removed upstream
* Declare compliance with Policy 4.6.0, no changes needed
* Remove vim-gtk transitional package
-- Simon Quigley <email address hidden> Thu, 05 Jan 2023 16:10:31 -0600
-
vim (2:9.0.1000-3ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
- debian/runtime/vimrc:
+ "syntax on" is a sane default for non-tiny Vim.
- debian/patches/debian/ubuntu-grub-syntax.patch:
+ Add Ubuntu-specific "quiet" keyword.
- debian/patches/ubuntu-mouse-off.patch:
+ Mouse mode is actively harmful in some chroots.
- debian/patches/patches/increase_timeout.diff:
+ Increase timeout for the Test_pattern_compile_speed patch.
- debian/patches/0001-fix-flaky-terminal-mode-test.vim:
+ Fix flaky Vim terminal mode test.
- debian/patches/0002-disable-failing-tests-on-ppc64.patch:
+ Disable some tests that were throwing an ENOMEM during build on
ppc64el. The tests are only disabled when building on ppc64el.
- Reverse-applicable (dropped) changes:
+ debian/patches/lunar_lobster.patch: Welcome to the Lunar Lobster!
vim (2:9.0.1000-3) unstable; urgency=medium
* Fix substitution of VIMCUR in vim-common.install (Closes: #1027766)
* Backport v9.0.1129 to fix sporadic Test_range failure
vim (2:9.0.1000-2) unstable; urgency=medium
* Restore man page translations for da, de, and ja (Closes: #1027318)
* Update to debhelper-compat 13
* Remove obsolete maintscript files for versions earlier than oldstable
* Remove PER_VARIANT_FILES handling in debian/rules
* Add future=+lfs to DEB_BUILD_MAINT_OPTIONS
* Backport v9.0.1118 to fix sporadic test failures
* ci: Run tests against installed xxd
* ci: Install python3 for vim tests
* Backport v9.0.1117 to fix bracketed paste with new ncurses
(Closes: #1027674)
vim (2:9.0.1000-1) unstable; urgency=medium
* Merge upstream patch v9.0.1000
+ Security fixes
- 9.0.0882: using freed memory after SpellFileMissing autocmd uses
bwipe, CVE-2022-4292
- 9.0.0947: invalid memory access in substitute with function that goes
to another file (Closes: #1027146, CVE-2022-4141)
* Backport v9.0.1087 to fix test_autocmd flakiness
-- Simon Quigley <email address hidden> Wed, 04 Jan 2023 12:28:15 -0600
-
vim (2:9.0.0813-1ubuntu2) lunar; urgency=medium
* No-change rebuild with Python 3.11 as default
-- Graham Inggs <email address hidden> Sun, 25 Dec 2022 20:46:36 +0000
-
vim (2:9.0.0813-1ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
+ debian/patches/lunar_lobster.patch: Welcome to the Lunar Lobster!
-- Simon Quigley <email address hidden> Sat, 10 Dec 2022 22:42:10 -0600
-
vim (2:9.0.0626-1ubuntu2) lunar; urgency=medium
* Rebuild against new perlapi-5.36.
-- Gianfranco Costamagna <email address hidden> Fri, 04 Nov 2022 17:23:37 +0100
-
vim (2:9.0.0626-1ubuntu1) lunar; urgency=medium
* Merge from Debian Unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
* Refresh all Ubuntu patches.
* Add lunar_lobster.patch, welcome to the Lunar Lobster!
-- Simon Quigley <email address hidden> Fri, 28 Oct 2022 13:46:59 -0500
-
vim (2:9.0.0242-1ubuntu1) kinetic; urgency=low
* Merge from Debian unstable. Remaining changes:
+ debian/runtime/vimrc:
"syntax on" is a sane default for non-tiny vim.
+ debian/patches/debian/ubuntu-grub-syntax.patch:
Add Ubuntu-specific "quiet" keyword.
+ debian/patches/ubuntu-mouse-off.patch:
Mouse mode is actively harmful in some chroots.
+ debian/patches/patches/increase_timeout.diff:
Increase timeout for the Test_pattern_compile_speed patch.
+ debian/patches/0001-fix-flaky-terminal-mode-test.vim: Fix flaky vim
terminal mode test
+ debian/patches/0002-disable-failing-tests-on-ppc64.patch: Disable some
tests that were throwing an ENOMEM during build on ppc64el. The tests
are only disabled when building on ppc64el.
vim (2:9.0.0242-1) unstable; urgency=medium
* Merge upstream patch v9.0.0242
+ 9.0.241/242: Install the shared syntax files (Closes: #1017856)
* Add historic changelog entry for #947120 fix
* Adjust lintian overrides for new []-format
* Declare compliance with Policy 4.6.1, no changes needed
vim (2:9.0.0229-1) unstable; urgency=medium
* Merge upstream patch v9.0.0229
+ Various CVE fixes
- 9.0.0211: invalid memory access when compiling :lockvar, CVE-2022-2819
- 9.0.0212: invalid memory access when compiling :unlet, CVE-2022-2816
- 9.0.0213: using freed memory with error in assert argument,
CVE-2022-2817
- 9.0.0218: reading before the start of the line, CVE-2022-2845
- 9.0.0220: invalid memory access with for loop over NULL string,
CVE-2022-2849
- 9.0.0221: accessing freed memory if compiling nested function fails,
CVE-2022-2862
- 9.0.0225: using freed memory with multiple line breaks in expression,
CVE-2022-2889
* Add Recommends: xxd to vim-common
* Minor fixes for vim-tiny's fake help file (Closes: #1017715)
* Revert "Temporarily skip Test_Debugger_breakadd_expr", test fixed upstream
-- Steve Langasek <email address hidden> Tue, 23 Aug 2022 13:18:58 -0700
