[CLSA-2022:1659639100] Fixed CVEs in vim: CVE-2022-2345, CVE-2022-2344, CVE-2022-2343, CVE-2022-2522
Type:
security
Severity:
Important
Release date:
2022-08-04
Description:
- CVE-2022-2345: fix using freed memory with recursive substitute - CVE-2022-2344: fix reading past end of completion with duplicate match - CVE-2022-2343: fix reading past end of completion with a long line and 'infercase' set - CVE-2022-2522: fix accessing uninitialized memory when completing long line
Updated packages:
  • vim-enhanced-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:3241d2958059504a1ed23fbb1170319d36de9826
  • vim-minimal-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:36fce227263ca61027138f66439f852cda981a30
  • vim-common-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:9164e7d8e70b9fb916f2fd23b389880d43707871
  • vim-X11-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:bd2ee57511a2aff873323056eea6980c5008ed76
  • vim-filesystem-7.4.629-5.2.el6.tuxcare.els24.x86_64.rpm
    sha:d756ebac5188db285a6b2b1c5ff6d16a558dd4d1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.