GNU bug report logs - #27770
[PATCH] gnu: vim: Update to 8.0.0727 [fixes CVE-2017-11109].

Previous Next

Package: guix-patches;

Reported by: Leo Famulari <leo <at> famulari.name>

Date: Thu, 20 Jul 2017 05:45:02 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

Full log

Message #10 received at 27770-done <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: 27770-done <at> debbugs.gnu.org
Subject: Re: [PATCH] gnu: vim: Update to 8.0.0727 [fixes CVE-2017-11109].
Date: Fri, 21 Jul 2017 15:25:44 -0400

On Thu, Jul 20, 2017 at 01:44:36AM -0400, Leo Famulari wrote:
> vim-full fails its tests with this update. I've noticed from previous
> discussion that the test suite is flaky with vim-full. What do you
> suggest?

In 3c14378381fc1f187a07b2f958eeed1958f02672, I updated vim and kept
vim-full at 8.0.0600.

This means that vim-full is still vulnerable to CVE-2017-11109.

I'll remove the vim-full package in 1 week (July 28) unless we have a
fix for this bug.

This bug report was last modified 8 years and 11 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #27770 [PATCH] gnu: vim: Update to 8.0.0727 [fixes CVE-2017-11109].

GNU bug report logs - #27770
[PATCH] gnu: vim: Update to 8.0.0727 [fixes CVE-2017-11109].