Is Warty's vim vulnerable to CAN-2004-1138 ?
Martin Pitt
martin.pitt at canonical.com
Thu Dec 23 02:21:11 CST 2004
Hi Daniel!
Daniel Robitaille [2004-12-23 0:10 -0800]:
> Just noticed tonight a recent vulnerability of vim (CAN-2004-1138):
>
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1138
> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=286223
>
> It seems to have been solved in sid (and I guess it is in hoary by now
> or should be very soon), but haven't seen any updated vim packages for
> Warty, nor can U find anything in bugzilla.
Warty's vim is vulnerable and I did not forget about this. It's still
in my queue and I will probably manage to fix it today. However, in
the last days there were so many vulnerabilities that it just takes a
while to sort them all out.
Thanks,
Martin
--
Martin Pitt http://www.piware.de
Ubuntu Developer http://www.ubuntulinux.org
Debian GNU/Linux Developer http://www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.ubuntu.com/archives/ubuntu-devel/attachments/20041223/4c56f56f/attachment.pgp
More information about the ubuntu-devel
mailing list