Release Info

Advisory: CLSA-2022:1645466182

OS: CentOS 6 ELS

Public date: 2022-02-21 00:00:00

Project: vim

Version: 7.4.629-5.2.el6.tuxcare.els8

Errata link: https://errata.cloudlinux.com/els6/CLSA-2022-1645466182.html

Changelog

- CVE-2022-0408: fix stack corruption when looking for spell suggestions - CVE-2022-0413: fix using freed memory when substitute with function call - CVE-2022-0417: fix illegal memory access caused by ':retab 0' - CVE-2022-0443: fix using freed memory with ':lopen' and ':bwipe'

Update

Update command: yum update vim* Immediate update (via bypass): yum update vim* --enablerepo=ELS6-rollout-3-bypass

Packages list

vim-X11-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-common-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-filesystem-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-enhanced-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-minimal-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm

CVEs

CVE-2022-0417
CVE-2022-0443
CVE-2022-0413
CVE-2022-0408