Opened 5 years ago

Closed 5 years ago

Last modified 5 years ago

#58561 closed update (fixed)

vim/neovim: security update

Reported by: l2dy (Zero King) Owned by: raimue (Rainer Müller)
Priority: Normal Milestone:
Component: ports Version:
Keywords: security Cc:
Port: vim neovim

Description

Vim before 8.1.1365 and Neovim before 0.3.6 are vulnerable to arbitrary code execution via modelines by opening a specially crafted text file.

https://github.com/numirias/security/blob/cf4f74e0c6c6e4bbd6b59823aa1b85fa913e26eb/doc/2019-06-04_ace-vim-neovim.md

Change History (1)

comment:1 Changed 5 years ago by l2dy (Zero King)

Resolution: fixed
Status: assignedclosed

Already fixed in [4c346d141fa111c74c8322c957adf6fb01292c6c/macports-ports], sorry.

Last edited 5 years ago by l2dy (Zero King) (previous) (diff)
Note: See TracTickets for help on using tickets.