[CLSA-2022:1659637855] Fixed CVEs in vim: CVE-2022-2344, CVE-2022-2345, CVE-2022-2522, CVE-2022-2343
Type:
security
Severity:
Important
Release date:
2022-08-04
Description:
- CVE-2022-2345: fix using freed memory with recursive substitute - CVE-2022-2344: fix reading past end of completion with duplicate match - CVE-2022-2343: fix reading past end of completion with a long line and 'infercase' set - CVE-2022-2522: fix accessing uninitialized memory when completing long line
Updated packages:
  • vim-enhanced-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:4ee5ecaad39164a35fac1747686d5f26e97ab93f
  • vim-minimal-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:0e1c80df64450c811e826180d8530a83d393ef2a
  • vim-filesystem-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:59e28aad4cfe20ec1bda4b10ebb85cc70149464c
  • vim-common-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:8e3ea322cb6fd135e1d7adca829a7d35ee5dc681
  • vim-X11-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:2b055bfcb72e6d01374c633471317f9df02c99c3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.