UbuntuUpdates.org

Package "vim-nox"

Name: vim-nox

Description:

Vi IMproved - enhanced vi editor - with scripting languages support

Latest version: 2:8.1.2269-1ubuntu5.29
Release: focal (20.04)
Level: updates
Repository: universe
Head package: vim
Homepage: https://www.vim.org/

Links


Download "vim-nox"


Other versions of "vim-nox" in Focal

Repository Area Version
base universe 2:8.1.2269-1ubuntu5
security universe 2:8.1.2269-1ubuntu5.29

Changelog

Version: 2:8.1.2269-1ubuntu5.29 2024-11-27 19:06:48 UTC

  vim (2:8.1.2269-1ubuntu5.29) focal-security; urgency=medium

  * SECURITY UPDATE: Use after free when closing a buffer.
    - debian/patches/CVE-2024-47814.patch: Add buf_locked() in src/buffer.c.
      Abort autocommands editing a file when buf_locked() in src/ex_cmds.c.
      Add buf_locked() in src/proto/buffer.pro.
    - CVE-2024-47814
  * debian/patches/skip-flaky-tests.patch: Skip failing tests.

 -- Hlib Korzhynskyy <email address hidden> Thu, 21 Nov 2024 14:42:44 -0330

Source diff to previous version
CVE-2024-47814 Vim is an open source, command line text editor. A use-after-free was found in Vim < 9.1.0764. When closing a buffer (visible in a window) a BufWinLe

Version: 2:8.1.2269-1ubuntu5.26 2024-11-14 16:06:55 UTC

  vim (2:8.1.2269-1ubuntu5.26) focal; urgency=medium

  * Ensure Ubuntu codenames are current (LP: #2084706).

 -- Simon Quigley <email address hidden> Wed, 16 Oct 2024 12:23:42 -0500

Source diff to previous version
2084706 Add Plucky as a known Ubuntu distribution

Version: 2:8.1.2269-1ubuntu5.25 2024-10-01 08:06:52 UTC

  vim (2:8.1.2269-1ubuntu5.25) focal-security; urgency=medium

  * SECURITY UPDATE: buffer overflow
    - debian/patches/CVE-2024-43802.patch: check buflen before advancing
      offset.
    - CVE-2024-43802

 -- Vyom Yadav <email address hidden> Wed, 25 Sep 2024 10:48:33 +0530

Source diff to previous version
CVE-2024-43802 Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead buffer but

Version: 2:8.1.2269-1ubuntu5.24 2024-09-05 05:06:56 UTC

  vim (2:8.1.2269-1ubuntu5.24) focal-security; urgency=medium

  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2024-41957.patch: set tagname to NULL
      after being freed
    - CVE-2024-41957
  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2024-43374.patch: add lock to keep
      reference valid
    - CVE-2024-43374

 -- Bruce Cable <email address hidden> Wed, 04 Sep 2024 13:11:27 +1000

Source diff to previous version
CVE-2024-41957 Vim is an open source command line text editor. Vim < v9.1.0647 has double free in src/alloc.c:616. When closing a window, the corresponding tagstack
CVE-2024-43374 The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding a new file to the argument list, this

Version: 2:8.1.2269-1ubuntu5.23 2024-05-31 03:07:01 UTC

  vim (2:8.1.2269-1ubuntu5.23) focal; urgency=medium

  * Ensure Ubuntu codenames are current (LP: #2064687).

 -- Simon Quigley <email address hidden> Thu, 02 May 2024 21:36:35 -0500

2064687 Add Oracular as a known Ubuntu distribution, make Debian and Ubuntu codenames current



About   -   Send Feedback to @ubuntu_updates