UbuntuUpdates.org

Package "vim"

Name: vim

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Vi IMproved - enhanced vi editor - with Athena GUI
  • Vi IMproved - enhanced vi editor - with GTK2 GUI
  • Vi IMproved - enhanced vi editor (transitional package)
  • Vi IMproved - enhanced vi editor - with scripting languages support

Latest version: 2:7.4.052-1ubuntu3.1
Release: trusty (14.04)
Level: updates
Repository: universe

Links



Other versions of "vim" in Trusty

Repository Area Version
base main 2:7.4.052-1ubuntu3
security universe 2:7.4.052-1ubuntu3.1
security main 2:7.4.052-1ubuntu3.1
updates main 2:7.4.052-1ubuntu3.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:7.4.052-1ubuntu3.1 2016-11-29 02:07:04 UTC

  vim (2:7.4.052-1ubuntu3.1) trusty-security; urgency=medium

  * SECURITY UPDATE: arbitrary shell execution via modelines
    - debian/patches/upstream/CVE-2016-1248.patch: Only allow valid
      characters in 'filetype', 'syntax' and 'keymap'. Tests adapted
      back to vim 7.3 by James McCoy of Debian, thanks! Patch is also
      updated to add the tests to the set that are run during the build.
    - CVE-2016-1248

 -- Steve Beattie <email address hidden> Wed, 23 Nov 2016 18:06:44 -0800

CVE-2016-1248 vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of a



About   -   Send Feedback to @ubuntu_updates