On Mon, 02 Dec 2024, TS wrote:
> The version of Vim for Windows offered for download on > https://www.vim.org/download.php is 9.1.0. This has some known > vulnerabilities (like CVE-2024-45306, CVE-2024-41965, ...). > Can the "current stable version" be updated to something not > vulnerable? Or is there a reason the website is still > prominently distributing a vulnerable version? > > I realize there are also links to nightly builds. I would > prefer to use something "stable" though, so I'm hesitant to > take a nightly build at random just to avoid being vulnerable. I have updated the links to include the latest stable release from the winget package repository: https://github.com/microsoft/winget-pkgs/tree/master/manifests/v/vim/vim/ Note: there will be new stable releases at the winget repository approximately all 100 minor patch numbers. So expect there to be a new releases within the next weeks. Thanks, Christian -- Dare to be naive. -- R. Buckminster Fuller -- -- You received this message from the "vim_use" maillist. Do not top-post! Type your reply below the text you are replying to. For more information, visit http://www.vim.org/maillist.php --- You received this message because you are subscribed to the Google Groups "vim_use" group. To unsubscribe from this group and stop receiving emails from it, send an email to vim_use+unsubscr...@googlegroups.com. To view this discussion visit https://groups.google.com/d/msgid/vim_use/Z04LQ6smlB%2BEmqfl%40256bit.org.