Publishing details

• Published on 2023-10-25
• Copied from ubuntu jammy in PPA for Ubuntu Security Proposed by Fabian Toepfer

Changelog

vim (2:8.2.3995-1ubuntu2.13) jammy-security; urgency=medium

  * SECURITY UPDATE: use-after-free vulnerability
    - debian/patches/CVE-2023-4733.patch: Verify oldwin pointer after
      reset_VIsual() in do_ecmd.
    - CVE-2023-4733
  * SECURITY UPDATE: integer overflow vulnerability
    - debian/patches/CVE-2023-4734.patch: Check for typeval correctly in
      f_fullcommand.
    - CVE-2023-4734
  * SECURITY UPDATE: out of bounds write vulnerability
    - debian/patches/CVE-2023-4735.patch: Add check for buffer size to avoid
      overflow in do_addsub.
    - CVE-2023-4735
  * SECURITY UPDATE: use-after-free vulnerability
    - debian/patches/CVE-2023-4750.patch: Check buffer is valid before
      accessing it.
    - CVE-2023-4750
  * SECURITY UPDATE: heap based buffer overflow vulnerability
    - debian/patches/CVE-2023-4751.patch: Stop Visual mode when using :ball
      to avoid illegal memory access.
    - CVE-2023-4751
  * SECURITY UPDATE: use-after-free vulnerability
    - debian/patches/CVE-2023-4752.patch: validate buffer before accessing it
      in ins_compl_get_exp.
    - CVE-2023-4752
  * SECURITY UPDATE: heap based buffer overflow vulnerability
    - debian/patches/CVE-2023-4781.patch: Disallow exchanging windows when
      textlock is active in vim_regsub_both.
    - CVE-2023-4781
  * SECURITY UPDATE: heap based buffer overflow vulnerability
    - debian/patches/CVE-2023-5344.patch: Add NULL at end of buffer in
      trunc_string.
    - CVE-2023-5344
  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2023-5441.patch: skip gui_scroll when exmode_active
      in gui_do_scroll.
    - CVE-2023-5441
  * SECURITY UPDATE: use-after-free vulnerability
    - debian/patches/CVE-2023-5535.patch: block autocommands in
      buf_contents_changed.
    - CVE-2023-5535

 -- Fabian Toepfer <email address hidden>  Mon, 16 Oct 2023 20:15:38 +0200

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• riscv64
• s390x

Built packages

• vim Vi IMproved - enhanced vi editor

• vim-athena Vi IMproved - enhanced vi editor - with Athena GUI

• vim-athena-dbgsym debug symbols for vim-athena

• vim-common Vi IMproved - Common files

• vim-dbgsym debug symbols for vim

• vim-doc Vi IMproved - HTML documentation

• vim-gtk Vi IMproved - enhanced vi editor (dummy package)

• vim-gtk3 Vi IMproved - enhanced vi editor - with GTK3 GUI

• vim-gtk3-dbgsym debug symbols for vim-gtk3

• vim-gui-common Vi IMproved - Common GUI files

• vim-nox Vi IMproved - enhanced vi editor - with scripting languages support

• vim-nox-dbgsym debug symbols for vim-nox

• vim-runtime Vi IMproved - Runtime files

• vim-tiny Vi IMproved - enhanced vi editor - compact version

• vim-tiny-dbgsym debug symbols for vim-tiny

• xxd tool to make (or reverse) a hex dump

• xxd-dbgsym debug symbols for xxd

Package files

• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (5.5 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (5.4 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (4.0 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (3.7 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (6.7 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (4.0 MiB)
• vim-athena-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (5.4 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_amd64.deb (2.0 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_arm64.deb (1.9 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_armhf.deb (1.6 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_i386.deb (1.9 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_ppc64el.deb (2.5 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_riscv64.deb (1.6 MiB)
• vim-athena_8.2.3995-1ubuntu2.13_s390x.deb (1.9 MiB)
• vim-common_8.2.3995-1ubuntu2.13_all.deb (79.6 KiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (4.9 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (4.8 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (3.6 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (3.3 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (6.0 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (3.6 MiB)
• vim-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (4.9 MiB)
• vim-doc_8.2.3995-1ubuntu2.13_all.deb (2.2 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (5.5 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (5.4 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (4.1 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (3.7 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (6.7 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (4.1 MiB)
• vim-gtk3-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (5.5 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_amd64.deb (2.0 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_arm64.deb (1.9 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_armhf.deb (1.6 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_i386.deb (1.9 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_ppc64el.deb (2.5 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_riscv64.deb (1.6 MiB)
• vim-gtk3_8.2.3995-1ubuntu2.13_s390x.deb (1.9 MiB)
• vim-gtk_8.2.3995-1ubuntu2.13_all.deb (9.0 KiB)
• vim-gui-common_8.2.3995-1ubuntu2.13_all.deb (88.4 KiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (5.1 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (5.1 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (3.8 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (3.4 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (6.2 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (3.7 MiB)
• vim-nox-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (5.1 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_amd64.deb (1.8 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_arm64.deb (1.8 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_armhf.deb (1.5 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_i386.deb (1.8 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_ppc64el.deb (2.3 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_riscv64.deb (1.5 MiB)
• vim-nox_8.2.3995-1ubuntu2.13_s390x.deb (1.8 MiB)
• vim-runtime_8.2.3995-1ubuntu2.13_all.deb (6.5 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (1.7 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (1.7 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (1.4 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (1.3 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (2.2 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (1.4 MiB)
• vim-tiny-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (1.7 MiB)
• vim-tiny_8.2.3995-1ubuntu2.13_amd64.deb (692.3 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_arm64.deb (665.1 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_armhf.deb (603.0 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_i386.deb (706.7 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_ppc64el.deb (891.2 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_riscv64.deb (623.1 KiB)
• vim-tiny_8.2.3995-1ubuntu2.13_s390x.deb (680.9 KiB)
• vim_8.2.3995-1ubuntu2.13.debian.tar.xz (283.3 KiB)
• vim_8.2.3995-1ubuntu2.13.dsc (3.0 KiB)
• vim_8.2.3995-1ubuntu2.13_amd64.deb (1.7 MiB)
• vim_8.2.3995-1ubuntu2.13_arm64.deb (1.6 MiB)
• vim_8.2.3995-1ubuntu2.13_armhf.deb (1.3 MiB)
• vim_8.2.3995-1ubuntu2.13_i386.deb (1.6 MiB)
• vim_8.2.3995-1ubuntu2.13_ppc64el.deb (2.1 MiB)
• vim_8.2.3995-1ubuntu2.13_riscv64.deb (1.4 MiB)
• vim_8.2.3995-1ubuntu2.13_s390x.deb (1.6 MiB)
• vim_8.2.3995.orig.tar.xz (9.9 MiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_amd64.ddeb (14.3 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_arm64.ddeb (13.6 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_armhf.ddeb (13.7 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_i386.ddeb (13.3 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_ppc64el.ddeb (14.3 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_riscv64.ddeb (13.7 KiB)
• xxd-dbgsym_8.2.3995-1ubuntu2.13_s390x.ddeb (14.1 KiB)
• xxd_8.2.3995-1ubuntu2.13_amd64.deb (53.2 KiB)
• xxd_8.2.3995-1ubuntu2.13_arm64.deb (52.8 KiB)
• xxd_8.2.3995-1ubuntu2.13_armhf.deb (53.1 KiB)
• xxd_8.2.3995-1ubuntu2.13_i386.deb (53.3 KiB)
• xxd_8.2.3995-1ubuntu2.13_ppc64el.deb (53.8 KiB)
• xxd_8.2.3995-1ubuntu2.13_riscv64.deb (52.3 KiB)
• xxd_8.2.3995-1ubuntu2.13_s390x.deb (53.2 KiB)