Source: vim Version: 2:8.2.2434-3 Severity: important Tags: security upstream X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org>
Hi, The following vulnerability was published for vim. CVE-2021-3778[0]: | vim is vulnerable to Heap-based Buffer Overflow Can you batch this one as well for the planned point release, please? If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2021-3778 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3778 [1] https://huntr.dev/bounties/d9c17308-2c99-4f9f-a706-f7f72c24c273 [2] https://github.com/vim/vim/commit/65b605665997fad54ef39a93199e305af2fe4d7f Please adjust the affected versions in the BTS as needed. Regards, Salvatore
