-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 23 Jan 2025 13:00:20 +0000 Source: vim Binary: vim-athena vim-common vim-doc vim-gui-common vim-runtime Architecture: all Version: 2:9.0.1378-2+deb12u1 Distribution: bookworm Urgency: high Maintainer: all Build Daemon (x86-csail-02) Changed-By: Sean Whitton Description: vim-athena - Vi IMproved - enhanced vi editor (dummy package) vim-common - Vi IMproved - Common files vim-doc - Vi IMproved - HTML documentation vim-gui-common - Vi IMproved - Common GUI files vim-runtime - Vi IMproved - Runtime files Closes: 1035955 1053694 1084806 Changes: vim (2:9.0.1378-2+deb12u1) bookworm; urgency=high . * Backport security fixes: - 9.0.1532: Crash when expanding "~" in substitute (Closes: #1035955, CVE-2023-2610) - 9.0.1848: buffer-overflow in vim_regsub_both() (CVE-2023-4738) - 9.0.1858: heap use after free in ins_compl_get_exp() (CVE-2023-4752) - 9.0.1873: heap-buffer-overflow in vim_regsub_both (CVE-2023-4781) - 9.0.1969: buffer-overflow in trunc_string() (Closes: #1053694, CVE-2023-5344) - 9.0.2142: stack-buffer-overflow in option callback functions (CVE-2024-22667) - 9.1.0697: heap-buffer-overflow in ins_typebuf (CVE-2024-43802) - 9.1.0764: use-after-free when closing a buffer (Closes: #1084806, CVE-2024-47814). Checksums-Sha1: 732f11ba853abe5f48fb085734c8dda8506b39fb 46372 vim-athena_9.0.1378-2+deb12u1_all.deb 8aa1bf39174a413fbc578b6874bbc08f117f8596 124720 vim-common_9.0.1378-2+deb12u1_all.deb ca423ed87e3d39386e0f2b205a844a188579959a 2449792 vim-doc_9.0.1378-2+deb12u1_all.deb 2455b744d5a7423c515149b3573657898b20ef6c 128968 vim-gui-common_9.0.1378-2+deb12u1_all.deb d3553136aa0dcab72f3de8b011f4c8b80f5fe4d8 7024956 vim-runtime_9.0.1378-2+deb12u1_all.deb b0b745a437f7b173387b16f9f59b0d1d8c79777f 19308 vim_9.0.1378-2+deb12u1_all-buildd.buildinfo Checksums-Sha256: 96caddc8afc4b5ab37abdbe5834079990039e7c97876cbd6dabc40294ad9f05d 46372 vim-athena_9.0.1378-2+deb12u1_all.deb 4b8a7bd1f8d831b5e4c00817f3d344ac957c2283f67f1898547612e3f1423238 124720 vim-common_9.0.1378-2+deb12u1_all.deb 29e7159102e428b8d7dc2ecdcb2113ba60164042bbf1f9faf83a22cef9eea507 2449792 vim-doc_9.0.1378-2+deb12u1_all.deb 92c850f357cd748ef5b4b08df4f543d8de96cd2077a87ae23962136f848888cf 128968 vim-gui-common_9.0.1378-2+deb12u1_all.deb 7f44bdbd449885643fd29652fe4877260d0036df9be874c4028c01df7ff8368b 7024956 vim-runtime_9.0.1378-2+deb12u1_all.deb 6a23021d8e5295fbe5d6bf2c369d42ddc273f90e1cfd7b6901b27773dcb7e02c 19308 vim_9.0.1378-2+deb12u1_all-buildd.buildinfo Files: ccdda603c8c4d0627d5a3d711b183be3 46372 oldlibs optional vim-athena_9.0.1378-2+deb12u1_all.deb 49f280416854f44e0292c26731d83dbd 124720 editors important vim-common_9.0.1378-2+deb12u1_all.deb e97263f28a57628edb73a88f840b9291 2449792 doc optional vim-doc_9.0.1378-2+deb12u1_all.deb e8f53e4e1337e29f132ec9ee84582bcf 128968 editors optional vim-gui-common_9.0.1378-2+deb12u1_all.deb e1e343bfcd9b1af57b7b95de20bc9ba5 7024956 editors optional vim-runtime_9.0.1378-2+deb12u1_all.deb f6edba352afbbe4dc0c2e42bf905a07b 19308 editors optional vim_9.0.1378-2+deb12u1_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEzcbx6nIE/ydHa1FFigL77i1GSVkFAmeeoSwACgkQigL77i1G SVniARAAlaJdo8AhGN7H6yOEn1HgrCr1L/DU5/ZV/QLJIcmCT/TAR8o//Sg7e7yx qho6awudzlobvHULLftwWPN9Dc3m54T6Wbw5AngljzoJ7gaetPHHVQCqVw8IfFnT HYgdDo/pbYCBp1JLf4bB+6R4truhvgRkkXyYNoWIcjCVQaOpn9BC4D8Fq69//bAQ ExBMNqO68yfXxGWLjhYBZMTZwaOKHLJKymz9Tn/YWMe52rZvxhMxJbtafoDdAv/8 7Zp6+K54uXDAtXp0TdZzRKPMdjVFR8qNNtteIyOEA8mD/VJ5ygnSTL54cYthJDrq ehECkXXwwUBhE4SuoyIEoafEdUByuV2Y3vq8JucKwBImiuNo9LOtI/IJcOqIIXX0 Z/lIRt7ydOTAGfC/2ISG4yk5xxr+FSBQWaTUcUb2Bd/IxuDUYhr/lPA7XLl3gGRV wBoWVvlWmmOhcyyDWPA71yk4UctT3yyLZtP6q78+ZfGg+Kb7TOq1QnW5Ux5j/U7s ZqIa6gH2OKLknoV6LTVmNO4FApoMGZuQdwoMGhaXqZGOA8UjLbI+x3p7iCuUWOaU 6qW7cecTTgvSS2bugSrNDP1PFCQ5xHYFl6lqPOgSqdXDEJVJaqEAq2oQMVPihiwF lIby+j3fIzTI3fxw4UhAolrnmqKoeDOHyr5GuU+y/ZxsjwmU/fs= =JL3q -----END PGP SIGNATURE-----