Release date:
2026-06-06 00:09:02 UTC
Description:
- CVE-2023-48234: in nv_zet() (normal.c), reject digit input that would
overflow the count accumulator by checking
n > (LONG_MAX - (nchar - "0")) / 10 before n = n * 10 + (nchar - "0"),
so a large normal-mode z count no longer wraps around in long
arithmetic; equivalent to upstream commits 58f9befca1 and 22cbc8a4e1
combined.
- CVE-2022-3705: in qf_update_buffer() (quickfix.c), guard the
qf_fill_buffer() call with a minimal backport of the upstream
quickfix_busy mechanism (from upstream 8.1.0488) so that
filetype/BufReadPost/BufWinEnter autocmds fired while filling the
buffer cannot free the location-list qf_info_T out from under us;
equivalent to upstream commit d0fab10ed2 (patch 9.0.0805).
Updated packages:
-
vim-X11-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:5fdbd747f61c6749316586a89e3c574fd7b8b165278df2e4c5454e181c2ad49e
-
vim-common-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:882d4da078aba65a3c7dc76af7b36419d5e9ff9e92854c8ad3acf0da97e7152c
-
vim-enhanced-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:86a6dae33f10e5b5619b84426378a843bec242f38c780a9f02155bb51f544af2
-
vim-filesystem-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:c82d75c14b7fdf0c8583722a014f9002228ef3de27ffcfcd883db9b22a6797f1
-
vim-minimal-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:40b7a88fee79c244c9e8f736fff6b5bd26fc3de4f3785694ed046db832e45e82
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
