diff options
| author | Peter Korsgaard <peter@korsgaard.com> | 2017-02-13 23:08:08 +0100 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-02-14 11:18:04 +0100 |
| commit | 0e76cde70f651b17e74681d17fb0afb16400102d (patch) | |
| tree | d8e789fe9aac3f876dcad8448c4a681bff2c8531 | |
| parent | 5c4d3560b94c9cb8f1594c9200a632b89ddf7aa0 (diff) | |
vim: security bump to version 8.0.0329
Fixes:
- CVE-2016-1248: vim before patch 8.0.0056 does not properly validate values
for the 'filetype', 'syntax' and 'keymap' options, which may result in the
execution of arbitrary code if a file with a specially crafted modeline is
opened.
- CVE-2017-5953: vim before patch 8.0.0322 does not properly validate values
for tree length when handling a spell file, which may result in an integer
overflow at a memory allocation site and a resultant buffer overflow.
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
| -rw-r--r-- | package/vim/vim.hash | 2 | ||||
| -rw-r--r-- | package/vim/vim.mk | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/package/vim/vim.hash b/package/vim/vim.hash index bc4a08e9c..28c6b97e3 100644 --- a/package/vim/vim.hash +++ b/package/vim/vim.hash @@ -1,2 +1,2 @@ # Locally computed -sha256 9b4790dafc886537096a6e1953ee0424b8c308881b97151a7bfba1f9fd14e3f9 vim-v8.0.0001.tar.gz +sha256 6fbe0ec1228f951ba598b48ac8033f41ca4934cc34689a6008685e7c26477ae2 vim-v8.0.0329.tar.gz diff --git a/package/vim/vim.mk b/package/vim/vim.mk index 308855eae..ec494608e 100644 --- a/package/vim/vim.mk +++ b/package/vim/vim.mk @@ -4,7 +4,7 @@ # ################################################################################ -VIM_VERSION = v8.0.0001 +VIM_VERSION = v8.0.0329 VIM_SITE = $(call github,vim,vim,$(VIM_VERSION)) # Win over busybox vi since vim is more feature-rich VIM_DEPENDENCIES = \ |