[Git][security-tracker-team/security-tracker][master] LTS: Status update for vim

[Sean Whitton (@spwhitton)]

Sean Whitton pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6bfb494c by Sean Whitton at 2025-01-29T20:52:55+00:00
LTS: Status update for vim

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -284,6 +284,14 @@ unbound
 --
 vim (Sean Whitton)
   NOTE: 20250114: Added by Front-Desk (rouca)
+  NOTE: 20250129: Fixes for first 29 outstanding CVEs backported in
+  NOTE: 20250129: salsa:lts-team/packages/vim.git#debian/bullseye.
+  NOTE: 20250129: However, the tests do not pass yet.  (spwhitton)
+  NOTE: 20250129: Re CVE-2024-22667: There are three sprintf calls sites which
+  NOTE: 20250129: need changing to snprintf: two in did_set_string_option, and
+  NOTE: 20250129: one in illegal_char.  The fourth call site changed in
+  NOTE: 20250129: upstream's patch was introduced later.  (spwhitton)
+
 --
 zfs-linux (Adrian Bunk)
   NOTE: 20250117: Added by Front-Desk (rouca)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bfb494c913cdd2a47adcc99afef13c5552aec91

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6bfb494c913cdd2a47adcc99afef13c5552aec91
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250129/b5cf5991/attachment.htm>