Debian 10262 Published by

A vim security update has been released for Debian GNU/Linux 8 Extended LTS to address multiple security vulnerabilities.



ELA-576-1 vim security update

Package vim
Version 2:7.4.488-7+deb8u5
Related CVEs CVE-2019-20807 CVE-2021-3778 CVE-2021-3796 CVE-2021-3872 CVE-2021-3927 CVE-2021-3928 CVE-2021-3973 CVE-2021-3974 CVE-2021-3984 CVE-2021-4019 CVE-2021-4069 CVE-2021-4192 CVE-2021-4193 CVE-2022-0213 CVE-2022-0319 CVE-2022-0359 CVE-2022-0361 CVE-2022-0368 CVE-2022-0408 CVE-2022-0554 CVE-2022-0685 CVE-2022-0714 CVE-2022-0729

Multiple security vulnerabilities have been discovered in vim, an enhanced vi editor. Buffer overflows, out-of-bounds reads and Null pointer derefrences may lead to a denial of service (application crash) or other unspecified impact.

For Debian 8 jessie, these problems have been fixed in version 2:7.4.488-7+deb8u5.

We recommend that you upgrade your vim packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-576-1 vim security update