package vim clone 435401 retitle -1 Format string vulnerability possibly allows arbitrary code execution tag -1 security severity -1 grave found -1 1:7.0-122+1etch2 thanks
On Fri, Aug 17, 2007 at 11:06:21PM +0200, Moritz Muehlenhoff wrote: > James Vega wrote: > > Thanks for taking a look at this. I'll work on getting a package ready > > for the stable release and contacting the security team. > > What's the status? If you prepare an update for us, please include the fix > for ftp://ftp.vim.org/pub/vim/patches/7.1/7.1.039 (CVE-2007-2953). I haven't had much free time recently. I'll get this done this weekend. Thanks for the prod and note about the other vulnerability. I've cloned this bug for the new vulnerability. James -- GPG Key: 1024D/61326D40 2003-09-02 James Vega <[EMAIL PROTECTED]>
signature.asc
Description: Digital signature