Dear Vim users, This is an excerpt from <https://bugs.gnu.org/27770>:
Leo Famulari <[email protected]> skribis: > On Thu, Jul 20, 2017 at 01:44:36AM -0400, Leo Famulari wrote: >> vim-full fails its tests with this update. I've noticed from previous >> discussion that the test suite is flaky with vim-full. What do you >> suggest? > > In 3c14378381fc1f187a07b2f958eeed1958f02672, I updated vim and kept > vim-full at 8.0.0600. > > This means that vim-full is still vulnerable to CVE-2017-11109. > > I'll remove the vim-full package in 1 week (July 28) unless we have a > fix for this bug. I’m sure removing this package would annoy quite a bunch of people, so please do take a look and give a hand to Leo! Ludo’.
