-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 23 Jan 2025 13:00:20 +0000
Source: vim
Architecture: source
Version: 2:9.0.1378-2+deb12u1
Distribution: bookworm
Urgency: high
Maintainer: Debian Vim Maintainers <team+vim@tracker.debian.org>
Changed-By: Sean Whitton <spwhitton@spwhitton.name>
Closes: 1035955 1053694 1084806
Changes:
 vim (2:9.0.1378-2+deb12u1) bookworm; urgency=high
 .
   * Backport security fixes:
     - 9.0.1532: Crash when expanding "~" in substitute
       (Closes: #1035955, CVE-2023-2610)
     - 9.0.1848: buffer-overflow in vim_regsub_both() (CVE-2023-4738)
     - 9.0.1858: heap use after free in ins_compl_get_exp() (CVE-2023-4752)
     - 9.0.1873: heap-buffer-overflow in vim_regsub_both (CVE-2023-4781)
     - 9.0.1969: buffer-overflow in trunc_string()
       (Closes: #1053694, CVE-2023-5344)
     - 9.0.2142: stack-buffer-overflow in option callback functions
       (CVE-2024-22667)
     - 9.1.0697: heap-buffer-overflow in ins_typebuf (CVE-2024-43802)
     - 9.1.0764: use-after-free when closing a buffer
       (Closes: #1084806, CVE-2024-47814).
Checksums-Sha1:
 aa679b88e1ea93e9f20cce75866f04ddef328704 3058 vim_9.0.1378-2+deb12u1.dsc
 574b54300aaa0dc68431dd45c766d2a95fab158a 189656 vim_9.0.1378-2+deb12u1.debian.tar.xz
Checksums-Sha256:
 ea106bfa3ce78bd8cb753a7074f7b6b5d03176e7e19cf237109889366ee16bd2 3058 vim_9.0.1378-2+deb12u1.dsc
 c6819d7c1c961b33cd291e766cd4ec8376f76e3162a453d7bc9cc8e2e2bab5ed 189656 vim_9.0.1378-2+deb12u1.debian.tar.xz
Files:
 2af398df87f4235e34f055aa710d1d6f 3058 editors optional vim_9.0.1378-2+deb12u1.dsc
 8d8f1faf0455d2ae19c438cc3a44866f 189656 editors optional vim_9.0.1378-2+deb12u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=mb3r
-----END PGP SIGNATURE-----