[Git][security-tracker-team/security-tracker][master] Add CVE-2022-0392/vim

Salvatore Bonaccorso (@carnil) Sat, 29 Jan 2022 00:26:58 -0800


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
eb8fec7e by Salvatore Bonaccorso at 2022-01-29T09:26:17+01:00
Add CVE-2022-0392/vim

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -235,7 +235,11 @@ CVE-2022-21798
 CVE-2022-21154
        RESERVED
 CVE-2022-0392 (Heap-based Buffer Overflow in Conda vim prior to 8.2. ...)
-       TODO: check
+       - vim <unfixed>
+       [bullseye] - vim <no-dsa> (Minor issue)
+       [buster] - vim <no-dsa> (Minor issue)
+       NOTE: https://huntr.dev/bounties/d00a2acd-1935-4195-9d5b-4115ef6b3126
+       NOTE: 
https://github.com/vim/vim/commit/806d037671e133bd28a7864248763f643967973a 
(v8.2.4218)
 CVE-2022-0391 [urllib.parse does not sanitize URLs containing ASCII newline 
and tabs]
        RESERVED
        - python3.9 3.9.7-1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb8fec7e4e38702b4e1ea024fbc79e9234a795ab

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb8fec7e4e38702b4e1ea024fbc79e9234a795ab
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Add CVE-2022-0392/vim

Reply via email to