Release Info

Advisory: CLSA-2022:1645540307

OS: CloudLinux 6 ELS

Public date: 2022-02-22 00:00:00

Project: vim

Version: 7.4.629-5.2.el6.tuxcare.els8

Errata link: https://errata.cloudlinux.com/cl6-els/CLSA-2022-1645540307.html

Changelog

- CVE-2022-0408: fix stack corruption when looking for spell suggestions - CVE-2022-0413: fix using freed memory when substitute with function call - CVE-2022-0417: fix illegal memory access caused by ':retab 0' - CVE-2022-0443: fix using freed memory with ':lopen' and ':bwipe'

Update

Update command: yum update vim* Immediate update (via bypass): yum update vim* --enablerepo=cloudlinux-rollout-6-bypass

Packages list

vim-X11-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-common-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-filesystem-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-enhanced-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm vim-minimal-7.4.629-5.2.el6.tuxcare.els8.x86_64.rpm

CVEs

CVE-2022-0413
CVE-2022-0417
CVE-2022-0443
CVE-2022-0408