Your message dated Wed, 12 Jul 2017 03:34:16 +0000
with message-id <[email protected]>
and subject line Bug#867720: fixed in vim 2:8.0.0197-5
has caused the Debian Bug report #867720,
regarding CVE-2017-11109
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
867720: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867720
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: vim
Severity: important
Tags: security
This was assigned CVE-2017-11109:
https://bugzilla.redhat.com/show_bug.cgi?id=1468492
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: vim
Source-Version: 2:8.0.0197-5
We believe that the bug you reported is fixed in the latest version of
vim, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
James McCoy <[email protected]> (supplier of updated vim package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 11 Jul 2017 23:11:25 -0400
Source: vim
Binary: vim-common vim-gui-common vim-runtime vim-doc vim-tiny vim vim-gtk
vim-gtk3 vim-nox vim-athena vim-gnome xxd
Architecture: source
Version: 2:8.0.0197-5
Distribution: unstable
Urgency: high
Maintainer: Debian Vim Maintainers <[email protected]>
Changed-By: James McCoy <[email protected]>
Description:
vim - Vi IMproved - enhanced vi editor
vim-athena - Vi IMproved - enhanced vi editor - with Athena GUI
vim-common - Vi IMproved - Common files
vim-doc - Vi IMproved - HTML documentation
vim-gnome - Vi IMproved - enhanced vi editor (dummy package)
vim-gtk - Vi IMproved - enhanced vi editor - with GTK2 GUI
vim-gtk3 - Vi IMproved - enhanced vi editor - with GTK3 GUI
vim-gui-common - Vi IMproved - Common GUI files
vim-nox - Vi IMproved - enhanced vi editor - with scripting languages suppo
vim-runtime - Vi IMproved - Runtime files
vim-tiny - Vi IMproved - enhanced vi editor - compact version
xxd - tool to make (or reverse) a hex dump
Closes: 867720
Changes:
vim (2:8.0.0197-5) unstable; urgency=high
.
* Backport upstream patches to fix CVE-2017-11109 (Closes: #867720)
+ 8.0.0703: Illegal memory access with empty :doau command
+ 8.0.0706: Crash when cancelling the cmdline window in Ex mode
+ 8.0.0707: Freeing wrong memory when manipulating buffers in autocommands
Checksums-Sha1:
337bd05cf0105eb25212faef82efc267e681b2f7 2991 vim_8.0.0197-5.dsc
6615d7a1639084d78e896d49c54549343710e6f6 158196 vim_8.0.0197-5.debian.tar.xz
f5154e9343b8a0598784105ef243157b628bb854 20365 vim_8.0.0197-5_amd64.buildinfo
Checksums-Sha256:
e2487383cdb131ea08dbe760bdbb9dfc51018ab9505e84e5b2f8798d3c02f3f9 2991
vim_8.0.0197-5.dsc
180057363d54f0b230be0ddb8c04597ecf2a957deeb387c450ad6cb9dfb258bd 158196
vim_8.0.0197-5.debian.tar.xz
25ceef8f3e2a924e8b28035917cd4474e3eb0d70fff1387ccee80dc63e6b75e8 20365
vim_8.0.0197-5_amd64.buildinfo
Files:
37695fc24f0efe8b9436ee9a3e9bfb9d 2991 editors optional vim_8.0.0197-5.dsc
52b5cf7cff4e0bd92eca561ca0415188 158196 editors optional
vim_8.0.0197-5.debian.tar.xz
0765bc2792552eb5c5c30bfb728a8363 20365 editors optional
vim_8.0.0197-5_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=XqWR
-----END PGP SIGNATURE-----
--- End Message ---
