Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Debian 11.2: 2022-378-01 Urgent: OpenSSL Vulnerability Patching

slackware
Calendar Grey September 26, 2022
Dist Slackware Esm H88
A critical buffer overflow vulnerability in Vim for Slackware 15.0 requires urgent updates. Upgrade to the latest version to ensure system security and data integrity
New vim packages are available for Slackware 15.0 and -current to fix a security issue

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/vim-9.0.0594-i586-1_slack15.0.txz: Upgraded. Fixed stack-based buffer overflow. Thanks to marav for the heads-up. In addition, Mig21 pointed out an issue where the defaults.vim file might need to be edited for some purposes as its contents will override the settings in the system-wide vimrc. Usually this file is replaced whenever vim is upgraded, which in those situations would be inconvenient for the admin. So, I've added support for a file named defaults.vim.custom which (if it exists) will be used instead of the defaults.vim file shipped in the packages and will persist through upgrades. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-3296 (* Security fix *) patches/packages/vim-gvim-9.0.0594-i586-1_slack15.0.txz: Upgraded.

Topics%20covered

Topics Covered

security advisory buffer overflow critical security fix package upgrade Slackware vim

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated packages for Slackware 15.0:
Updated packages for Slackware x86_64 15.0:
Updated packages for Slackware -current:
Updated packages for Slackware x86_64 -current:

MD5 Signatures

Slackware 15.0 packages: 1b0cb487c5c2c3b6cb26e9b89e6f2cee vim-9.0.0594-i586-1_slack15.0.txz 992c76a5513d257ce254a74a475cdfce vim-gvim-9.0.0594-i586-1_slack15.0.txz
Slackware x86_64 15.0 packages: e26ff833be864ce0918573fbd30c8603 vim-9.0.0594-x86_64-1_slack15.0.txz 7526ef9c18d8493b92e10401682b83db vim-gvim-9.0.0594-x86_64-1_slack15.0.txz
Slackware -current packages: 2430111745328ac8c0087bef7d1030a7 ap/vim-9.0.0594-i586-1.txz f59dd40be3a5b9ac827d9efe34e41157 xap/vim-gvim-9.0.0594-i586-1.txz
Slackware x86_64 -current packages: 2b400b18679446912cd6ea0a96f819ea ap/vim-9.0.0594-x86_64-1.txz 09a1dc77ae1b533871e65f732299f931 xap/vim-gvim-9.0.0594-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory buffer overflow critical security fix package upgrade Slackware vim

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the packages as root: # upgradepkg vim-9.0.0594-i586-1_slack15.0.txz vim-gvim-9.0.0594-i586-1_slack15.0.txz

Related News

Your message here