UbuntuUpdates.org

Package "vim-common"

Name: vim-common

Description:

Vi IMproved - Common files
Latest version: 2:9.1.0496-1ubuntu6.4
Release: oracular (24.10)
Level: security
Repository: main
Head package: vim
Homepage: https://www.vim.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "vim-common"

All arch deb package
APT INSTALL

Other versions of "vim-common" in Oracular

Repository Area Version
base main 2:9.1.0496-1ubuntu6
updates main 2:9.1.0496-1ubuntu6.4

Changelog

Version: 2:9.1.0496-1ubuntu6.4 2025-02-11 21:06:51 UTC

  vim (2:9.1.0496-1ubuntu6.4) oracular-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2025-24014.patch: fix a segfault in win_line()
      in files src/gui.c, src/testdir/crash/ex_redraw_crash,
      src/testdir/test_crash.vim.
    - CVE-2025-24014

 -- Leonidas Da Silva Barbosa <email address hidden> Fri, 31 Jan 2025 13:03:26 -0300
Source diff to previous version
CVE-2025-24014 Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically does

Version: 2:9.1.0496-1ubuntu6.3 2025-01-22 17:07:05 UTC

  vim (2:9.1.0496-1ubuntu6.3) oracular-security; urgency=medium

  * SECURITY UPDATE: Heap-buffer-overflow when switching buffers.
    - debian/patches/CVE-2025-22134.patch: Add reset_VIsual_and_resel() to
      src/arglist.c. Add ptrlen checks in src/misc1.c and src/ops.c.
    - CVE-2025-22134

 -- Hlib Korzhynskyy <email address hidden> Thu, 16 Jan 2025 14:17:18 -0330
Source diff to previous version
CVE-2025-22134 When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does no

Version: 2:9.1.0496-1ubuntu6.2 2024-11-27 17:07:08 UTC

  vim (2:9.1.0496-1ubuntu6.2) oracular-security; urgency=medium

  * SECURITY UPDATE: Use after free when closing a buffer.
    - debian/patches/CVE-2024-47814.patch: Add buf_locked() in src/buffer.c.
      Abort autocommands editing a file when buf_locked() in src/ex_cmds.c.
      Add buf_locked() in src/proto/buffer.pro.
    - CVE-2024-47814

 -- Hlib Korzhynskyy <email address hidden> Tue, 05 Nov 2024 17:19:25 -0330
CVE-2024-47814 Vim is an open source, command line text editor. A use-after-free was found in Vim < 9.1.0764. When closing a buffer (visible in a window) a BufWinLe


About   -   Send Feedback to @ubuntu_updates