[Git][security-tracker-team/security-tracker][master] Add CVE-2023-00{54,51,49}/vim

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jan 4 20:32:29 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
174af14c by Salvatore Bonaccorso at 2023-01-04T21:31:30+01:00
Add CVE-2023-00{54,51,49}/vim

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -31,17 +31,23 @@ CVE-2023-22604
 CVE-2023-22603
 	RESERVED
 CVE-2023-0054 (Out-of-bounds Write in GitHub repository vim/vim prior to 9.0.1145. ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/b289ee0f-fd16-4147-bd01-c6289c45e49d
+	NOTE: https://github.com/vim/vim/commit/3ac1d97a1d9353490493d30088256360435f7731 (v9.0.1145)
 CVE-2023-0053
 	RESERVED
 CVE-2023-0052
 	RESERVED
 CVE-2023-0051 (Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1 ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/1c8686db-baa6-42dc-ba45-aed322802de9
+	NOTE: https://github.com/vim/vim/commit/c32949b0779106ed5710ae3bffc5053e49083ab4 (v9.0.1144)
 CVE-2023-0050
 	RESERVED
 CVE-2023-0049 (Out-of-bounds Read in GitHub repository vim/vim prior to 9.0.1143. ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/5e6f325c-ba54-4bf0-b050-dca048fd3fd9
+	NOTE: https://github.com/vim/vim/commit/7b17eb4b063a234376c1ec909ee293e42cff290c (v9.0.1143)
 CVE-2023-0048 (Code Injection in GitHub repository lirantal/daloradius prior to maste ...)
 	TODO: check
 CVE-2023-0047



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174af14c87aea8531333de4150db7e6ed0cc00fa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/174af14c87aea8531333de4150db7e6ed0cc00fa
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230104/e5572d36/attachment.htm>

More information about the debian-security-tracker-commits mailing list