[Git][security-tracker-team/security-tracker][master] Add CVE-2022-0685/vim

Sun Feb 20 20:19:11 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
620e448e by Salvatore Bonaccorso at 2022-02-20T21:18:47+01:00
Add CVE-2022-0685/vim

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -29,7 +29,11 @@ CVE-2022-0686 (Authorization Bypass Through User-Controlled Key in NPM url-parse
 	NOTE: https://huntr.dev/bounties/55fd06cd-9054-4d80-83be-eb5a454be78c
 	NOTE: https://github.com/unshiftio/url-parse/commit/d5c64791ef496ca5459ae7f2176a31ea53b127e5 (1.5.8)
 CVE-2022-0685 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior  ...)
-	TODO: check
+	- vim <unfixed>
+	[bullseye] - vim <no-dsa> (Minor issue)
+	[buster] - vim <no-dsa> (Minor issue)
+	NOTE: https://huntr.dev/bounties/27230da3-9b1a-4d5d-8cdf-4b1e62fcd782
+	NOTE: https://github.com/vim/vim/commit/5921aeb5741fc6e84c870d68c7c35b93ad0c9f87 (v8.2.4418)
 CVE-2022-0684
 	RESERVED
 CVE-2021-46700 (In libsixel 1.8.6, sixel_encoder_output_without_macro (called from six ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/620e448eba6c3a5fa44ef279d8ee7d41da9f30f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/620e448eba6c3a5fa44ef279d8ee7d41da9f30f3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220220/a26d064b/attachment.htm>
