Stay Connected:

ELSA-2022-0366

ELSA-2022-0366 - vim security update

Type:SECURITY
Impact:MODERATE
Release Date:2022-02-03

Description


[8.0.1763-16.0.1.4]
- - Remove upstream references [Orabug: 31197557]

[2:8.0.1763-16.4]
- CVE-2021-4193 vim: vulnerable to Out-of-bounds Read
- CVE-2021-4192 vim: vulnerable to Use After Free

[2:8.0.1763-16.3]
- 2028341 - CVE-2021-3984 vim: illegal memory access when C-indenting could lead to Heap Buffer Overflow [rhel-8.6.0]
- 2028430 - CVE-2021-4019 vim: heap-based buffer overflow in find_help_tags() in src/help.c [rhel-8.6.0]

[2:8.0.1763-16.2]
- remove the upstream test - uses a feature which is not presented in RHEL 8

[2:8.0.1763-16.1]
- CVE-2021-3872 vim: heap-based buffer overflow in win_redr_status() drawscreen.c [rhel-8.6.0]


Related CVEs


CVE-2021-3872
CVE-2021-4192
CVE-2021-4193
CVE-2021-3984
CVE-2021-4019

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_aarch64_appstream
vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_aarch64_baseos_latest
vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_aarch64_u5_baseos_patch
vim-X11-8.0.1763-16.0.1.el8_5.4.aarch64.rpme254735c593e9ddd0065c1e73c5c1fa0f7fb70eb083a4ca748d94f1e897edd36-ol8_aarch64_appstream
vim-common-8.0.1763-16.0.1.el8_5.4.aarch64.rpm707ca353db295853f246e9acc59a14b7d017f3ad114fa87edc2cab3631d4ba44-ol8_aarch64_appstream
vim-enhanced-8.0.1763-16.0.1.el8_5.4.aarch64.rpm7ece0e6eb9e854e419a34503a2bb15f021614e9ab1c48d51b25599c57c9a21c4-ol8_aarch64_appstream
vim-filesystem-8.0.1763-16.0.1.el8_5.4.noarch.rpm4f4b95ebbdc8636a869d8028752faf9e09bffbccc2a5d8626784f4a5f313bc5a-ol8_aarch64_appstream
vim-minimal-8.0.1763-16.0.1.el8_5.4.aarch64.rpm3bf65d8112743ffcdd013bdb037c517004d88d2e76399bcde9c164957a82442c-ol8_aarch64_baseos_latest
vim-minimal-8.0.1763-16.0.1.el8_5.4.aarch64.rpm3bf65d8112743ffcdd013bdb037c517004d88d2e76399bcde9c164957a82442c-ol8_aarch64_u5_baseos_patch
Oracle Linux 8 (x86_64) vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_x86_64_appstream
vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_x86_64_baseos_latest
vim-8.0.1763-16.0.1.el8_5.4.src.rpme57fa66b34f7f7486d790a52abcc2760cb30f8b6b10a88db5e0824bae78abe4a-ol8_x86_64_u5_baseos_patch
vim-X11-8.0.1763-16.0.1.el8_5.4.x86_64.rpmdf92c21bc851182b9b1006b79be83d92a1c472b00c4961df49668572d90aa66c-ol8_x86_64_appstream
vim-common-8.0.1763-16.0.1.el8_5.4.x86_64.rpm75c2b9093bea9e03f63a80bb5a1cb09278174f7fc8d52eb38038c64f3f16eb17-ol8_x86_64_appstream
vim-enhanced-8.0.1763-16.0.1.el8_5.4.x86_64.rpmbaaf9c433cbfeedbc7ff2d53fb534102deaa1b28af776f57cae78babbb3bdb68-ol8_x86_64_appstream
vim-filesystem-8.0.1763-16.0.1.el8_5.4.noarch.rpm4f4b95ebbdc8636a869d8028752faf9e09bffbccc2a5d8626784f4a5f313bc5a-ol8_x86_64_appstream
vim-minimal-8.0.1763-16.0.1.el8_5.4.x86_64.rpm1950e3e43dcad00bcabcf03a61d7a9656a8e4248e830d50898590c8ed808a2ab-ol8_x86_64_baseos_latest
vim-minimal-8.0.1763-16.0.1.el8_5.4.x86_64.rpm1950e3e43dcad00bcabcf03a61d7a9656a8e4248e830d50898590c8ed808a2ab-ol8_x86_64_u5_baseos_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights