|
|
Log in / Subscribe / Register

vim: code execution

Package(s):vim CVE #(s):CVE-2016-1248
Created:November 23, 2016 Updated:January 11, 2017
Description: From the Debian advisory:

Florian Larysch and Bram Moolenaar discovered that vim, an enhanced vi editor, does not properly validate values for the the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened.

Alerts:
Gentoo 201701-29 vim 2017-01-11
CentOS CESA-2016:2972 vim 2016-12-21
CentOS CESA-2016:2972 vim 2016-12-21
Scientific Linux SLSA-2016:2972-1 vim 2016-12-21
Oracle ELSA-2016-2972 vim 2016-12-20
Oracle ELSA-2016-2972 vim 2016-12-20
Red Hat RHSA-2016:2972-01 vim 2016-12-21
openSUSE openSUSE-SU-2016:2992-1 vim 2016-12-04
openSUSE openSUSE-SU-2016:2993-1 vim 2016-12-04
SUSE SUSE-SU-2016:2938-1 vim 2016-11-29
SUSE SUSE-SU-2016:2942-1 vim 2016-11-29
Arch Linux ASA-201611-29 neovim 2016-11-30
Ubuntu USN-3139-1 vim 2016-11-28
Debian-LTS DLA-718-1 vim 2016-11-22
Debian DSA-3722-1 vim 2016-11-22
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds