Ubuntu
vim package

  1. Bug #150858
  2. Comment #4

Comment 4 for bug 150858

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package vim - 1:7.0-035+1ubuntu5.2~dapper1

---------------
vim (1:7.0-035+1ubuntu5.2~dapper1) dapper-backports; urgency=low

  * import the patch from vim upload 1:7.0-035+1ubuntu5.2 to edgy-security
    LP: #150858

vim (1:7.0-035+1ubuntu5.2) edgy-security; urgency=low

  * SECURITY UPDATE: Format string vulnerability allows user-assisted
    remote attackers to execute arbitrary code.
  * Added 'patches/801_CVE-2007-2953': Use puts() instead of
    fprintf(). Patch from upstream, backported.
  * References
    CVE-2007-2953

 -- Reinhard Tartler <email address hidden> Tue, 05 Feb 2008 20:57:44 +0100