gvim-8.2.3408-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11497 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z gvim-8.2.3408-1.2 on GA media These are all security issues fixed in the gvim-8.2.3408-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11497 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11497 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2007-2438/ SUSE CVE CVE-2007-2438 page https://www.suse.com/security/cve/CVE-2007-2953/ SUSE CVE CVE-2007-2953 page https://www.suse.com/security/cve/CVE-2017-1000382/ SUSE CVE CVE-2017-1000382 page https://www.suse.com/security/cve/CVE-2017-5953/ SUSE CVE CVE-2017-5953 page https://www.suse.com/security/cve/CVE-2017-6349/ SUSE CVE CVE-2017-6349 page https://www.suse.com/security/cve/CVE-2017-6350/ SUSE CVE CVE-2017-6350 page https://www.suse.com/security/cve/CVE-2019-12735/ SUSE CVE CVE-2019-12735 page openSUSE Tumbleweed gvim-8.2.3408-1.2 vim-8.2.3408-1.2 vim-data-8.2.3408-1.2 vim-data-common-8.2.3408-1.2 vim-small-8.2.3408-1.2 gvim-8.2.3408-1.2 as a component of openSUSE Tumbleweed vim-8.2.3408-1.2 as a component of openSUSE Tumbleweed vim-data-8.2.3408-1.2 as a component of openSUSE Tumbleweed vim-data-common-8.2.3408-1.2 as a component of openSUSE Tumbleweed vim-small-8.2.3408-1.2 as a component of openSUSE Tumbleweed The sandbox for vim allows dangerous functions such as (1) writefile, (2) feedkeys, and (3) system, which might allow user-assisted attackers to execute shell commands and write files via modelines. CVE-2007-2438 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-2438.html CVE-2007-2438 https://bugzilla.suse.com/270496 SUSE Bug 270496 https://bugzilla.suse.com/304172 SUSE Bug 304172 Format string vulnerability in the helptags_one function in src/ex_cmds.c in Vim 6.4 and earlier, and 7.x up to 7.1, allows user-assisted remote attackers to execute arbitrary code via format string specifiers in a help-tags tag in a help file, related to the helptags command. CVE-2007-2953 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-2953.html CVE-2007-2953 https://bugzilla.suse.com/292433 SUSE Bug 292433 VIM version 8.0.1187 (and other versions most likely) ignores umask when creating a swap file ("[ORIGINAL_FILENAME].swp") resulting in files that may be world readable or otherwise accessible in ways not intended by the user running the vi binary. CVE-2017-1000382 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-1000382.html CVE-2017-1000382 https://bugzilla.suse.com/1065958 SUSE Bug 1065958 https://bugzilla.suse.com/1070955 SUSE Bug 1070955 vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow. CVE-2017-5953 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 important 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5953.html CVE-2017-5953 https://bugzilla.suse.com/1024724 SUSE Bug 1024724 https://bugzilla.suse.com/1123143 SUSE Bug 1123143 https://bugzilla.suse.com/1173534 SUSE Bug 1173534 An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0.0377, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows. CVE-2017-6349 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 moderate 4.1 AV:L/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6349.html CVE-2017-6349 https://bugzilla.suse.com/1027057 SUSE Bug 1027057 An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch 8.0.0378, if it does not properly validate values for tree length when reading a corrupted undo file, which may lead to resultant buffer overflows. CVE-2017-6350 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 moderate 4.1 AV:L/AC:M/Au:S/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6350.html CVE-2017-6350 https://bugzilla.suse.com/1027053 SUSE Bug 1027053 getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim. CVE-2019-12735 openSUSE Tumbleweed:gvim-8.2.3408-1.2 openSUSE Tumbleweed:vim-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-8.2.3408-1.2 openSUSE Tumbleweed:vim-data-common-8.2.3408-1.2 openSUSE Tumbleweed:vim-small-8.2.3408-1.2 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-12735.html CVE-2019-12735 https://bugzilla.suse.com/1137443 SUSE Bug 1137443