Fedora 24: vim Security Update
Summary
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more.
Update Information:
The newest upstream commit, CVE-2017-6350 vim: Integer overflow at an unserialize_uep memory allocation site, CVE-2017-6349 vim: Integer overflow at a u_read_undo memory allocation site
Change Log
References
[ 1 ] Bug #1427944 - CVE-2017-6349 vim: Integer overflow at a u_read_undo memory allocation site https://bugzilla.redhat.com/show_bug.cgi?id=1427944 [ 2 ] Bug #1427945 - CVE-2017-6350 vim: Integer overflow at an unserialize_uep memory allocation site https://bugzilla.redhat.com/show_bug.cgi?id=1427945
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade vim' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html