OpenPKG CVS Repository
http://cvs.openpkg.org/
____________________________________________________________________________
Server: cvs.openpkg.org Name: Thomas Lotterer
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-web Date: 15-Dec-2004 18:17:02
Branch: HEAD Handle: 2004121517170100
Modified files:
openpkg-web/security OpenPKG-SA-2004.052-vim.txt
Log:
release OpenPKG Security Advisory 2004.052 (vim)
Summary:
Revision Changes Path
1.2 +15 -12 openpkg-web/security/OpenPKG-SA-2004.052-vim.txt
____________________________________________________________________________
patch -p0 <<'@@ .'
Index: openpkg-web/security/OpenPKG-SA-2004.052-vim.txt
============================================================================
$ cvs diff -u -r1.1 -r1.2 OpenPKG-SA-2004.052-vim.txt
--- openpkg-web/security/OpenPKG-SA-2004.052-vim.txt 15 Dec 2004 16:53:29
-0000 1.1
+++ openpkg-web/security/OpenPKG-SA-2004.052-vim.txt 15 Dec 2004 17:17:01
-0000 1.2
@@ -1,5 +1,5 @@
-
-
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA1
________________________________________________________________________
@@ -18,14 +18,13 @@
OpenPKG 2.2 <= vim-6.3.30-2.2.0 >= vim-6.3.30-2.2.1
OpenPKG 2.1 <= vim-6.3.11-2.1.0 >= vim-6.3.11-2.1.1
-Affected Releases: Dependent Packages: none
+Dependent Packages: none
Description:
- The Gentoo vim maintainer Ciaran McCreesh found several
- modeline-related vulnerabilities in vim [1] and reported them to the
- vendor. Bram Moolenaar created patch 6.3.045 that fixes the reported
- vulnerabilities and adds more conservative modeline rights.
-
+ The Gentoo Vim maintainer Ciaran McCreesh found several
+ "modeline"-related vulnerabilities in Vim editor [1] and reported them
+ to the vendor. Bram Moolenaar created patch 6.3.045 that fixes the
+ reported vulnerabilities and adds more conservative "modeline" rights.
The Common Vulnerabilities and Exposures (CVE) project assigned the id
CAN-2004-1138 [2] to the problem.
@@ -52,9 +51,6 @@
$ <prefix>/bin/openpkg rpm --rebuild vim-6.3.30-2.2.1.src.rpm
$ su -
# <prefix>/bin/openpkg rpm -Fvh <prefix>/RPM/PKG/vim-6.3.30-2.2.1.*.rpm
-
- Additionally, we recommend that you rebuild and reinstall
- all dependent packages (see above), if any, too [3][4].
________________________________________________________________________
References:
@@ -63,7 +59,7 @@
[3] http://www.openpkg.org/tutorial.html#regular-source
[4] http://www.openpkg.org/tutorial.html#regular-binary
[5] ftp://ftp.openpkg.org/release/2.2/UPD/vim-6.3.30-2.2.1.src.rpm
- [6] ftp://ftp.openpkg.org/release/2.1/UPD/vim-6.3.30-2.2.1.src.rpm
+ [6] ftp://ftp.openpkg.org/release/2.1/UPD/vim-6.3.11-2.1.1.src.rpm
[7] ftp://ftp.openpkg.org/release/2.2/UPD/
[8] ftp://ftp.openpkg.org/release/2.1/UPD/
[9] http://www.openpkg.org/security.html#signature
@@ -76,3 +72,10 @@
for details on how to verify the integrity of this advisory.
________________________________________________________________________
+-----BEGIN PGP SIGNATURE-----
+Comment: OpenPKG <[EMAIL PROTECTED]>
+
+iD8DBQFBwHFvgHWT4GPEy58RAtzMAKCkcrNyH3kuhcnt5zo2ni0/LSA96gCg54Cl
+lLn+VG19loTfrU4iy66ZdlA=
+=tSIj
+-----END PGP SIGNATURE-----
@@ .
______________________________________________________________________
The OpenPKG Project www.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
