[ubuntu/yakkety-updates] vim 2:7.4.1829-1ubuntu2.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Nov 29 00:58:22 UTC 2016
vim (2:7.4.1829-1ubuntu2.1) yakkety-security; urgency=medium
* SECURITY UPDATE: arbitrary shell execution via modelines
- debian/patches/upstream/CVE-2016-1248.patch: Only allow valid
characters in 'filetype', 'syntax' and 'keymap'. Tests adapted
back to vim 7.3 by James McCoy of Debian, thanks! Patch is also
updated to add the tests to the set that are run during the build.
- CVE-2016-1248
Date: 2016-11-25 04:46:19.577973+00:00
Changed-By: Steve Beattie <sbeattie at ubuntu.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/vim/2:7.4.1829-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Yakkety-changes
mailing list