New Debian vim 2:8.1.0875-5+deb10u6 fixes: This update addresses the following issues: 2:8.1.0875-5+deb10u6 (Wed, 27 Sep 2023 19:47:00 +0000) * Non-maintainer upload by the LTS Security Team. * CVE-2023-4752: heap use after free in ins_compl_get_exp() * CVE-2023-4781: heap-buffer-overflow in vim_regsub_both()
--- mirror/ftp/pool/main/v/vim/vim_8.1.0875-5+deb10u5.dsc +++ apt/ucs_5.0-0-errata5.0-5/source/vim_8.1.0875-5+deb10u6.dsc @@ -1,3 +1,9 @@ +2:8.1.0875-5+deb10u6 [Wed, 27 Sep 2023 19:47:00 +0000] Bastien Roucariès <rouca@debian.org>: + + * Non-maintainer upload by the LTS Security Team. + * CVE-2023-4752: heap use after free in ins_compl_get_exp() + * CVE-2023-4781: heap-buffer-overflow in vim_regsub_both() + 2:8.1.0875-5+deb10u5 [Mon, 12 Jun 2023 16:23:03 +0200] Markus Koschany <apo@debian.org>: * Non-maintainer upload by the LTS team. <http://piuparts.knut.univention.de/5.0-5/#237280397241903406>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-5] f7dd24af50d Bug #56675: vim 2:8.1.0875-5+deb10u6 doc/errata/staging/vim.yaml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) [5.0-5] 929b272a004 Bug #56675: vim 2:8.1.0875-5+deb10u6 doc/errata/staging/vim.yaml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x829>