|
osdir.com mailing list archive |
|
Subject: Bug#320017: Fwd: Re: Requesting CAN for vim vulnerability [was: [Full-disclosure] Help poor children in Uganda] - msg#00067List: debian.packages.vim.develDate: Tue, 26 Jul 2005 15:06:02 -0400 (EDT) From: "Steven M. Christey" <coley@xxxxxxxxxxxxxxx> To: Martin Pitt <martin.pitt@xxxxxxxxxxxxx> Cc: cve@xxxxxxxxx Subject: Re: Requesting CAN for vim vulnerability [was: [Full-disclosure] Help poor children in Uganda] X-Spam-Status: No, score=2.0 required=4.0 tests=AWL,BAYES_95 autolearn=no version=3.0.3 Here you go... ====================================================== Candidate: CAN-2005-2368 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2368 Reference: FULLDISC:20050725 Help poor children in Uganda Reference: URL:http://lists.grok.org.uk/pipermail/full-disclosure/2005-July/035402.html Reference: MISC:http://www.guninski.com/where_do_you_want_billg_to_go_today_5.html vim 6.3 before 6.3.082, with modelines enabled, allows attackers to execute arbitrary commands via shell metacharacters in the (1) glob or (2) expand commands of a foldexpr expression for calculating fold levels. ----- End forwarded message ----- -- Martin Pitt http://www.piware.de Ubuntu Developer http://www.ubuntu.com Debian Developer http://www.debian.org
Thread at a glance:
Previous Message by Date: click to view message previewProcessed: Re: Bug#320017: vim: Arbitrary code execution in modelinesProcessing commands for control@xxxxxxxxxxxxxxx: > tags 320017 +pending Bug#320017: vim: Arbitrary code execution in modelines Tags were: security Tags added: pending > tags 320017 +patch Bug#320017: vim: Arbitrary code execution in modelines Tags were: pending security Tags added: patch > thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) Next Message by Date: click to view message previewr269 - trunk/vim/debianAuthor: nobse Date: 2005-07-28 10:16:29 +0000 (Thu, 28 Jul 2005) New Revision: 269 Modified: trunk/vim/debian/changelog Log: added CAN Modified: trunk/vim/debian/changelog =================================================================== --- trunk/vim/debian/changelog 2005-07-26 15:59:12 UTC (rev 268) +++ trunk/vim/debian/changelog 2005-07-28 10:16:29 UTC (rev 269) @@ -2,7 +2,8 @@ * New upstream patches (079 to 085), see README.gz for details. + 6.3.082: Fix arbitrary shell commands execution by wrapping them in - glob() or expand() function calls in modelines. (closes: #320017) + glob() or expand() function calls in modelines. (CAN-2005-2368) + (closes: #320017) * James Vega <jamessan@xxxxxxxxxxxx> + Added patch 129_filetype.vim.diff, which sets the filetype to perl for @@ -12,7 +13,7 @@ + Added patch 130_fstab.vim.diff, added bind as option. (closes: #308890) + Added patch 131_xxd.1.diff, fixes typo in xxd manpage. (closes: #311234) - -- Debian VIM Maintainers <pkg-vim-maintainers@xxxxxxxxxxxxxxxxxxxxxxx> Tue, 26 Jul 2005 17:00:16 +0200 + -- Debian VIM Maintainers <pkg-vim-maintainers@xxxxxxxxxxxxxxxxxxxxxxx> Thu, 28 Jul 2005 12:16:06 +0200 vim (1:6.3-078+1) unstable; urgency=low Previous Message by Thread: click to view message previewr268 - branches/sarge/vim/debianAuthor: madcoder-guest Date: 2005-07-26 15:59:12 +0000 (Tue, 26 Jul 2005) New Revision: 268 Modified: branches/sarge/vim/debian/changelog Log: ugly no-dots revision + stable-security Modified: branches/sarge/vim/debian/changelog =================================================================== --- branches/sarge/vim/debian/changelog 2005-07-26 15:50:35 UTC (rev 267) +++ branches/sarge/vim/debian/changelog 2005-07-26 15:59:12 UTC (rev 268) @@ -1,4 +1,4 @@ -vim (1:6.3-071+1.sarge.1) stable; urgency=high +vim (1:6.3-071+1sarge1) stable-security; urgency=high * Add upstream patches 081 and 082 : + add patches Fix arbitrary shell commands execution by wrapping them in Next Message by Thread: click to view message previewr269 - trunk/vim/debianAuthor: nobse Date: 2005-07-28 10:16:29 +0000 (Thu, 28 Jul 2005) New Revision: 269 Modified: trunk/vim/debian/changelog Log: added CAN Modified: trunk/vim/debian/changelog =================================================================== --- trunk/vim/debian/changelog 2005-07-26 15:59:12 UTC (rev 268) +++ trunk/vim/debian/changelog 2005-07-28 10:16:29 UTC (rev 269) @@ -2,7 +2,8 @@ * New upstream patches (079 to 085), see README.gz for details. + 6.3.082: Fix arbitrary shell commands execution by wrapping them in - glob() or expand() function calls in modelines. (closes: #320017) + glob() or expand() function calls in modelines. (CAN-2005-2368) + (closes: #320017) * James Vega <jamessan@xxxxxxxxxxxx> + Added patch 129_filetype.vim.diff, which sets the filetype to perl for @@ -12,7 +13,7 @@ + Added patch 130_fstab.vim.diff, added bind as option. (closes: #308890) + Added patch 131_xxd.1.diff, fixes typo in xxd manpage. (closes: #311234) - -- Debian VIM Maintainers <pkg-vim-maintainers@xxxxxxxxxxxxxxxxxxxxxxx> Tue, 26 Jul 2005 17:00:16 +0200 + -- Debian VIM Maintainers <pkg-vim-maintainers@xxxxxxxxxxxxxxxxxxxxxxx> Thu, 28 Jul 2005 12:16:06 +0200 vim (1:6.3-078+1) unstable; urgency=low Loading Comments...
|
|
