UbuntuUpdates.org

Package "vim-common"

Name: vim-common

Description:

Vi IMproved - Common files

Latest version: 2:8.2.3995-1ubuntu2.20
Release: jammy (22.04)
Level: updates
Repository: main
Head package: vim
Homepage: https://www.vim.org/

Links


Download "vim-common"


Other versions of "vim-common" in Jammy

Repository Area Version
base main 2:8.2.3995-1ubuntu2
security main 2:8.2.3995-1ubuntu2.19

Changelog

Version: 2:8.2.3995-1ubuntu2.20 2024-11-14 16:06:56 UTC

  vim (2:8.2.3995-1ubuntu2.20) jammy; urgency=medium

  * Ensure Ubuntu codenames are current (LP: #2084706).

 -- Simon Quigley <email address hidden> Wed, 16 Oct 2024 12:27:14 -0500

Source diff to previous version
2084706 Add Plucky as a known Ubuntu distribution

Version: 2:8.2.3995-1ubuntu2.19 2024-10-01 17:07:07 UTC

  vim (2:8.2.3995-1ubuntu2.19) jammy-security; urgency=medium

  * SECURITY UPDATE: buffer overflow
    - debian/patches/CVE-2024-43802.patch: check buflen before advancing
      offset.
    - CVE-2024-43802

 -- Vyom Yadav <email address hidden> Wed, 25 Sep 2024 11:00:01 +0530

Source diff to previous version
CVE-2024-43802 Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead buffer but

Version: 2:8.2.3995-1ubuntu2.18 2024-09-05 05:06:58 UTC

  vim (2:8.2.3995-1ubuntu2.18) jammy-security; urgency=medium

  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2024-41957.patch: set tagname to NULL
      after being freed
    - CVE-2024-41957
  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2024-43374.patch: add lock to keep
      reference valid
    - CVE-2024-43374

 -- Bruce Cable <email address hidden> Tue, 27 Aug 2024 15:34:22 +1000

Source diff to previous version
CVE-2024-41957 Vim is an open source command line text editor. Vim < v9.1.0647 has double free in src/alloc.c:616. When closing a window, the corresponding tagstack
CVE-2024-43374 The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding a new file to the argument list, this

Version: 2:8.2.3995-1ubuntu2.17 2024-05-31 03:07:03 UTC

  vim (2:8.2.3995-1ubuntu2.17) jammy; urgency=medium

  * Ensure Ubuntu codenames are current (LP: #2064687).

 -- Simon Quigley <email address hidden> Thu, 02 May 2024 21:37:51 -0500

Source diff to previous version
2064687 Add Oracular as a known Ubuntu distribution, make Debian and Ubuntu codenames current

Version: 2:8.2.3995-1ubuntu2.16 2024-03-18 21:06:59 UTC

  vim (2:8.2.3995-1ubuntu2.16) jammy-security; urgency=medium

  * SECURITY UPDATE: stack based buffer overflow
    - debian/patches/CVE-2024-22667.patch: passes error buffer length down
      through option callback functions.
    - debian/patches/remove-flaky-matchfuzzy-test.patch: removing flaky test
      initially introduced in d/p/CVE-2023-2426.patch due to long run time
      causing the test and builds to fail.
    - CVE-2024-22667

 -- Ian Constantin <email address hidden> Thu, 14 Mar 2024 11:05:11 +0200

CVE-2024-22667 Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down
CVE-2023-2426 Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 9.0.1499.



About   -   Send Feedback to @ubuntu_updates