Release date:
2026-06-08 08:48:39 UTC
Description:
- CVE-2023-48234: in nv_zet() (normal.c), reject digit input that would
overflow the count accumulator by checking
n > (LONG_MAX - (nchar - "0")) / 10 before n = n * 10 + (nchar - "0"),
so a large normal-mode z count no longer wraps around in long
arithmetic; equivalent to upstream commits 58f9befca1 and 22cbc8a4e1
combined.
- CVE-2022-3705: in qf_update_buffer() (quickfix.c), guard the
qf_fill_buffer() call with a minimal backport of the upstream
quickfix_busy mechanism (from upstream 8.1.0488) so that
filetype/BufReadPost/BufWinEnter autocmds fired while filling the
buffer cannot free the location-list qf_info_T out from under us;
equivalent to upstream commit d0fab10ed2 (patch 9.0.0805).
Updated packages:
-
vim-X11-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:f9eca6a2d1a0bbc4d65481a7a9b4a7641df090bd491b953100a0d80abafa7fa8
-
vim-common-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:6945a04dd2e2cf7c8f9b5b093d39ef901628ced80b96cb8792085ea90760266b
-
vim-enhanced-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:91b076e4ea557381932e410e4e114ff1f834377a5aaf217b25e605a07db31997
-
vim-filesystem-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:918ed0758f489eaad51c249edf2f66e0c0f56a57ad2bf488dc1109cb523c2088
-
vim-minimal-7.4.629-8.0.1.el7_9.tuxcare.els18.x86_64.rpm
sha:dcc702f5d850593ecc1c06fb73ebd753ed0d29054c3aef2c3db81562f842957c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
