MGASA-2021-0535 - Updated vim packages fix security vulnerability

Publication date: 03 Dec 2021
URL: https://advisories.mageia.org/MGASA-2021-0535.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2021-3872,
     CVE-2021-3875,
     CVE-2021-3903,
     CVE-2021-3927,
     CVE-2021-3928,
     CVE-2021-3968,
     CVE-2021-3973,
     CVE-2021-3974

Multiple Heap-based Buffer Overflows Stack-based Buffer overflows and a
use after free.

References:
- https://bugs.mageia.org/show_bug.cgi?id=29583
- https://lists.fedoraproject.org/archives/list/[email protected]/thread/S42L4Z4DTW4LHLQ4FJ33VEOXRCBE7WN4/
- https://lists.fedoraproject.org/archives/list/[email protected]/thread/DU26T75PYA3OF7XJGNKMT2ZCQEU4UKP5/
- https://lists.fedoraproject.org/archives/list/[email protected]/thread/PGW56Z6IN4UVM3E5RXXF4G7LGGTRBI5C/
- https://ubuntu.com/security/notices/USN-5147-1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3872
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3875
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3903
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3927
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3928
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3968
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3973
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3974

SRPMS:
- 8/core/vim-8.2.3642-1.mga8