Advisory: CLSA-2024:1720776957
OS: CentOS 7 ELS
Public date: 2024-07-12 05:35:59
Project: vim
Version: 7.4.629-8.el7_9.tuxcare.els1
Errata link: https://errata.tuxcare.com/els_os/centos7els/CLSA-2024-1720776957.html
- CVE-2023-0054: check the return value of vim_regsub() - CVE-2023-0049: avoid going over the NUL at the end - CVE-2023-0288: prevent the cursor from moving to line zero - CVE-2023-0433: check for not going over the end of the line - CVE-2023-2610: limit the text length to MAXCOL - CVE-2023-4750: check buffer is valid before accessing it - CVE-2023-4733: verify oldwin pointer after reset_VIsual() - CVE-2023-4751: stop Visual mode when using :ball - CVE-2023-5344: add NULL at end of buffer - CVE-2024-22667: pass size of errbuf down the call stack, use snprintf()
Update command: yum update vim*
vim-X11-7.4.629-8.el7_9.tuxcare.els1.x86_64.rpm vim-common-7.4.629-8.el7_9.tuxcare.els1.x86_64.rpm vim-enhanced-7.4.629-8.el7_9.tuxcare.els1.x86_64.rpm vim-filesystem-7.4.629-8.el7_9.tuxcare.els1.x86_64.rpm vim-minimal-7.4.629-8.el7_9.tuxcare.els1.x86_64.rpm