[ubuntu/lunar-proposed] vim 2:9.0.1000-4ubuntu3 (Accepted)
Nishit Majithia
nishit.majithia at canonical.com
Fri Mar 31 17:30:34 UTC 2023
vim (2:9.0.1000-4ubuntu3) lunar; urgency=medium
* Security upload for the devel series (LP: #2013211)
* SECURITY UPDATE: reading past the end of a line when formatting text
- debian/patches/CVE-2023-0433.patch: check for not going over the end of
the line.
- CVE-2023-0433
* SECURITY UPDATE: divide by zero issue
- debian/patches/CVE-2023-0512.patch: divide by zero with 'smoothscroll'
set and a narrow window
- debian/patches/CVE-2023-1127.patch: divide by zero in zero-width window
- CVE-2023-0512
- CVE-2023-1127
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-1170.patch: accessing invalid memory with put
in Visual block mode
- CVE-2023-1170
* SECURITY UPDATE: incorrect calculation of buffer size
- debian/patches/CVE-2023-1175.patch: illegal memory access when using
virtual editing
- CVE-2023-1175
* SECURITY UPDATE: NULL pointer dereference vulnerability
- debian/patches/CVE-2023-1264.patch: using NULL pointer with nested
:open command
- CVE-2023-1264
Date: Wed, 29 Mar 2023 18:19:19 +0530
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Simon Chopin <simon.chopin at canonical.com>
https://launchpad.net/ubuntu/+source/vim/2:9.0.1000-4ubuntu3
-------------- next part --------------
Format: 1.8
Date: Wed, 29 Mar 2023 18:19:19 +0530
Source: vim
Built-For-Profiles: noudeb
Architecture: source
Version: 2:9.0.1000-4ubuntu3
Distribution: lunar
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
Launchpad-Bugs-Fixed: 2013211
Changes:
vim (2:9.0.1000-4ubuntu3) lunar; urgency=medium
.
* Security upload for the devel series (LP: #2013211)
* SECURITY UPDATE: reading past the end of a line when formatting text
- debian/patches/CVE-2023-0433.patch: check for not going over the end of
the line.
- CVE-2023-0433
* SECURITY UPDATE: divide by zero issue
- debian/patches/CVE-2023-0512.patch: divide by zero with 'smoothscroll'
set and a narrow window
- debian/patches/CVE-2023-1127.patch: divide by zero in zero-width window
- CVE-2023-0512
- CVE-2023-1127
* SECURITY UPDATE: heap based buffer overflow vulnerability
- debian/patches/CVE-2023-1170.patch: accessing invalid memory with put
in Visual block mode
- CVE-2023-1170
* SECURITY UPDATE: incorrect calculation of buffer size
- debian/patches/CVE-2023-1175.patch: illegal memory access when using
virtual editing
- CVE-2023-1175
* SECURITY UPDATE: NULL pointer dereference vulnerability
- debian/patches/CVE-2023-1264.patch: using NULL pointer with nested
:open command
- CVE-2023-1264
Checksums-Sha1:
566721e9e7d3673cd3c1fc4a6082daf211146f5b 2838 vim_9.0.1000-4ubuntu3.dsc
a041828ee50468bb632f2eec2de4c0ef43339cf1 11016004 vim_9.0.1000.orig.tar.xz
c26f0f7e3396b14ce119543773e27c47c8b0bb40 194224 vim_9.0.1000-4ubuntu3.debian.tar.xz
53a6714fe201f18e3c74b2c478e396d21183d506 9340 vim_9.0.1000-4ubuntu3_source.buildinfo
Checksums-Sha256:
dc57daff3240f01c41c167d9f9b813933ce1b862c790701ce06d7ed170d8a2fa 2838 vim_9.0.1000-4ubuntu3.dsc
7cad71aa4285f827ea324dbb2453ed88ecb228fe10f258683f78560aa42f6743 11016004 vim_9.0.1000.orig.tar.xz
674a5a391717575c5ef62a3c2cf5d22839c18bc7ad2d9f4ffb897b86923201b6 194224 vim_9.0.1000-4ubuntu3.debian.tar.xz
86aea0b5c9069d057428ce31d11b4eeea362d0ce0ed62cb756f26d34ac62b3ef 9340 vim_9.0.1000-4ubuntu3_source.buildinfo
Files:
7c4ba5d902b50e650061ee75a1bbcfd3 2838 editors optional vim_9.0.1000-4ubuntu3.dsc
7e7a50315bb8e7b2bc7b83dd7304091c 11016004 editors optional vim_9.0.1000.orig.tar.xz
51d66acaa450bb74cfe9ed7435a58e4e 194224 editors optional vim_9.0.1000-4ubuntu3.debian.tar.xz
4947682cf848698354997ed731de9c7d 9340 editors optional vim_9.0.1000-4ubuntu3_source.buildinfo
Original-Maintainer: Debian Vim Maintainers <team+vim at tracker.debian.org>
More information about the lunar-changes
mailing list