[Git][security-tracker-team/security-tracker][master] Add CVE-2022-228{6,7}/vim

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
863ec619 by Salvatore Bonaccorso at 2022-07-03T10:30:26+02:00
Add CVE-2022-228{6,7}/vim

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49,9 +49,14 @@ CVE-2022-32581
 CVE-2022-30531
 	RESERVED
 CVE-2022-2287 (Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. ...)
-	TODO: check
+	- vim <unfixed> (unimportant)
+	NOTE: https://huntr.dev/bounties/654aa069-3a9d-45d3-9a52-c1cf3490c284/
+	NOTE: https://github.com/vim/vim/commit/5e59ea54c0c37c2f84770f068d95280069828774 (v9.0.0021)
+	NOTE: Crash in CLI tool, no security impact
 CVE-2022-2286 (Out-of-bounds Read in GitHub repository vim/vim prior to 9.0. ...)
-	TODO: check
+	- vim <unfixed> (unimportant)
+	NOTE: https://huntr.dev/bounties/fe7681fb-2318-436b-8e65-daf66cd597d8/
+	NOTE: https://github.com/vim/vim/commit/f12129f1714f7d2301935bb21d896609bdac221c (v9.0.0020)
 CVE-2022-34902
 	RESERVED
 CVE-2022-34901



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/863ec619127aac9a4803f61aea477271ee6a2d6a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/863ec619127aac9a4803f61aea477271ee6a2d6a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220703/d7d534b7/attachment.htm>