[Git][security-tracker-team/security-tracker][master] Two more vim issues fixed in unstable upload
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Oct 30 20:49:33 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
541edfdb by Salvatore Bonaccorso at 2021-10-30T21:49:03+02:00
Two more vim issues fixed in unstable upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -197,7 +197,7 @@ CVE-2021-3905
CVE-2021-3904 (grav is vulnerable to Improper Neutralization of Input During Web Page ...)
TODO: check
CVE-2021-3903 (vim is vulnerable to Heap-based Buffer Overflow ...)
- - vim <unfixed>
+ - vim 2:8.2.3565-1
NOTE: https://huntr.dev/bounties/35738a4f-55ce-446c-b836-2fb0b39625f8
NOTE: https://github.com/vim/vim/commit/777e7c21b7627be80961848ac560cb0a9978ff43
CVE-2020-36503
@@ -3402,7 +3402,7 @@ CVE-2021-42102 (An uncontrolled search path element vulnerabilities in Trend Mic
CVE-2021-42101 (An uncontrolled search path element vulnerabilities in Trend Micro Ape ...)
NOT-FOR-US: Trend Micro
CVE-2021-3872 (vim is vulnerable to Heap-based Buffer Overflow ...)
- - vim <unfixed>
+ - vim 2:8.2.3565-1
[bullseye] - vim <no-dsa> (Minor issue)
[buster] - vim <no-dsa> (Minor issue)
[stretch] - vim <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/541edfdb2366be0227faa75767c2f75026114247
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/541edfdb2366be0227faa75767c2f75026114247
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211030/2742539f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list