Release Info

Advisory: CLSA-2025:1762180717

OS: Debian 10 ELS

Public date: 2025-11-03 14:38:39.726882

Project: vim

Version: 2:8.1.0875-5+deb10u6+tuxcare.els9

Errata link: https://errata.tuxcare.com/els_os/debian10els/CLSA-2025-1762180717.html

Changelog

* SECURITY UPDATE: Reading past end of completion with a long line and 'infercase' set - debian/patches/CVE-2022-2343.patch: Allocate the string if needed - CVE-2022-2343 * SECURITY UPDATE: Accessing uninitialized memory when completing long line - debian/patches/CVE-2022-2522.patch: Terminate string with NUL. - CVE-2022-2522

Update

Update command: apt-get update apt-get --only-upgrade install vim*

Packages list

vim_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb vim-athena_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb vim-common_8.1.0875-5+deb10u6+tuxcare.els9_all.deb vim-doc_8.1.0875-5+deb10u6+tuxcare.els9_all.deb vim-gtk_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb vim-gtk3_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb vim-gui-common_8.1.0875-5+deb10u6+tuxcare.els9_all.deb vim-nox_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb vim-runtime_8.1.0875-5+deb10u6+tuxcare.els9_all.deb vim-tiny_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb xxd_8.1.0875-5+deb10u6+tuxcare.els9_amd64.deb

CVEs

CVE-2022-2345
CVE-2022-2845
CVE-2022-2206
CVE-2022-2124
CVE-2022-2287
CVE-2022-2286
CVE-2022-2284
CVE-2022-2522
CVE-2022-2126
CVE-2022-2289
CVE-2022-2182
CVE-2022-2210
CVE-2022-2207
CVE-2022-2175
CVE-2022-2183
CVE-2022-2343
CVE-2022-2125
CVE-2023-0049
CVE-2022-4292
CVE-2022-3591
CVE-2022-2264
CVE-2022-2344
CVE-2022-2257