Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Ubuntu 23: 2024-ec8d0fb8e2 High: NGINX Incorrect Data Handling, Memory Leak

fedora
Calendar Grey September 2, 2024
Dist Fedora Esm H88
Fedora releases security updates for vim addressing critical issues. Find details on the fixes in this advisory.
patchlevel 703 Security fixes for CVE-2024-43374, CVE-2024-43802

Summary

VIM (VIsual editor iMproved) is an updated and improved version of the

vi editor. Vi was the first real screen-based editor for UNIX, and is

still very popular. VIM improves on vi by adding new features:

multiple windows, multi-level undo, block highlighting and more.

Update Information:

patchlevel 703 Security fixes for CVE-2024-43374, CVE-2024-43802

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora moderate severity vim use after free patchlevel update

Change Log

* Fri Aug 30 2024 Zdenek Dohnal - 2:9.1.703-1 - patchlevel 703

References


[ 1 ] Bug #2305311 - CVE-2024-43374 vim: use-after-free in alist_add() in src/arglist.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2305311 [ 2 ] Bug #2308491 - CVE-2024-43802 vim: Heap Buffer Overflow in Vim's Typeahead Buffer Handling [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2308491

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-bb4b6da0b6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: vim
Product: Fedora 40
Version: 9.1.703
Release: 1.fc40
URL: http://www.vim.org/
Summary: The VIM editor

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora moderate severity vim use after free patchlevel update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here