Fedora 39: Critical Vim Memory Issues Resolved in 2023-1976197889 Update
fedora
November 3, 2023
Security fix for CVE-2023-5535, CVE-2023-5441 ---- patchlevel 1984 ---- The newest upstream commit
Summary
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor. Vi was the first real screen-based editor for UNIX, and is
still very popular. VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more.
Update Information:
Security fix for CVE-2023-5535, CVE-2023-5441 ---- patchlevel 1984 ---- The newest upstream commit
Topics Covered
Change Log
* Wed Oct 18 2023 Zdenek Dohnal
References
[ 1 ] Bug #2242141 - CVE-2023-5344 vim: Heap-based Buffer Overflow in trunc_string()
https://bugzilla.redhat.com/show_bug.cgi?id=2242141
[ 2 ] Bug #2242926 - CVE-2023-5441 vim: NULL pointer dereference in screen_line() in src/screen.c
https://bugzilla.redhat.com/show_bug.cgi?id=2242926
[ 3 ] Bug #2244101 - CVE-2023-5535 vim: use after free
https://bugzilla.redhat.com/show_bug.cgi?id=2244101
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-1976197889' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: vim
Product: Fedora 39
Version: 9.0.2048
Release: 1.fc39
URL: https://www.vim.org/
Summary: The VIM editor
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!