[ubuntu/bionic-security] vim 2:8.0.1453-1ubuntu1.8 (Accepted)
Ray Veldkamp
ray.veldkamp at canonical.com
Thu Jan 20 13:32:45 UTC 2022
vim (2:8.0.1453-1ubuntu1.8) bionic-security; urgency=medium
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service or possible code execution when C-indenting
- debian/patches/CVE-2021-3984.patch: Fix memory access issue by correctly
dereferencing cursor position in src/misc1.c and
src/testdir/test_cindent.vim
- CVE-2021-3984
* SECURITY UPDATE: Heap-based buffer overflow could lead to a denial of
service when help functions are provided with long command strings
- debian/patches/CVE-2021-4019.patch: Fix handling of strcpy to use safer
vim_snprintf in src/ex_cmds.c and src/testdir/test_help.vim
- CVE-2021-4019
* SECURITY UPDATE: Use-after-free issue in open command can lead to a denial
of service or possible code execution
- debian/patches/CVE-2021-4069.patch: Fix issue making a copy of the
current line and its address in src/ex_docmd.c
- CVE-2021-4069
Date: 2022-01-20 03:30:09.858290+00:00
Changed-By: Ray Veldkamp <ray.veldkamp at canonical.com>
https://launchpad.net/ubuntu/+source/vim/2:8.0.1453-1ubuntu1.8
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list