Slackware Local Security Checks : Slackware: Security Advisory (SSA:2022-342-02)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.13.2022.342.02

Categoría: Slackware Local Security Checks

Título: Slackware: Security Advisory (SSA:2022-342-02)

Resumen: The remote host is missing an update for the 'vim' package(s) announced via the SSA:2022-342-02 advisory.

Descripción: Summary:
The remote host is missing an update for the 'vim' package(s) announced via the SSA:2022-342-02 advisory.

Vulnerability Insight:
New vim packages are available for Slackware 15.0 and -current to
fix security issues.

Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/vim-9.0.1034-i586-1_slack15.0.txz: Upgraded.
This update fixes various security issues such as a heap-based buffer
overflow and use after free.
For more information, see:
[links moved to references]
(* Security fix *)
patches/packages/vim-gvim-9.0.1034-i586-1_slack15.0.txz: Upgraded.
+--------------------------+

Affected Software/OS:
'vim' package(s) on Slackware 15.0, Slackware current.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2022-3491
https://huntr.dev/bounties/6e6e05c2-2cf7-4aa5-a817-a62007bf92cb
https://security.gentoo.org/glsa/202305-16
https://github.com/vim/vim/commit/3558afe9e9e904cabb8475392d859f2d2fc21041
Common Vulnerability Exposure (CVE) ID: CVE-2022-3520
https://huntr.dev/bounties/c1db3b70-f4fe-481f-8a24-0b1449c94246
https://github.com/vim/vim/commit/36343ae0fb7247e060abfd35fb8e4337b33abb4b
Common Vulnerability Exposure (CVE) ID: CVE-2022-3591
https://huntr.dev/bounties/a5a998c2-4b07-47a7-91be-dbc1886b3921
https://github.com/vim/vim/commit/8f3c3c6cd044e3b5bf08dbfa3b3f04bb3f711bad
Common Vulnerability Exposure (CVE) ID: CVE-2022-4141
https://huntr.dev/bounties/20ece512-c600-45ac-8a84-d0931e05541f
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AZ3JMSUCR6Y7626RDWQ2HNSUFIQOJ33G/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6ZNKVN4GICORTVFKVCM4MSOXCYWNHUC/
https://github.com/vim/vim/commit/cc762a48d42b579fb7bdec2c614636b830342dd5
https://lists.debian.org/debian-lts-announce/2023/06/msg00015.html
Common Vulnerability Exposure (CVE) ID: CVE-2022-4292
https://huntr.dev/bounties/da3d4c47-e57a-451e-993d-9df0ed31f57b
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYC22GGZ6QA66HLNLHCTAJU265TT3O33/
https://github.com/vim/vim/commit/c3d27ada14acd02db357f2d16347acc22cb17e93
Common Vulnerability Exposure (CVE) ID: CVE-2022-4293
https://huntr.dev/bounties/385a835f-6e33-4d00-acce-ac99f3939143
https://github.com/vim/vim/commit/cdef1cefa2a440911c727558562f83ed9b00e16b

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2022.342.02
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2022-342-02)
Resumen:	The remote host is missing an update for the 'vim' package(s) announced via the SSA:2022-342-02 advisory.
Descripción:	Summary: The remote host is missing an update for the 'vim' package(s) announced via the SSA:2022-342-02 advisory. Vulnerability Insight: New vim packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ patches/packages/vim-9.0.1034-i586-1_slack15.0.txz: Upgraded. This update fixes various security issues such as a heap-based buffer overflow and use after free. For more information, see: [links moved to references] (* Security fix *) patches/packages/vim-gvim-9.0.1034-i586-1_slack15.0.txz: Upgraded. +--------------------------+ Affected Software/OS: 'vim' package(s) on Slackware 15.0, Slackware current. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2022-3491 https://huntr.dev/bounties/6e6e05c2-2cf7-4aa5-a817-a62007bf92cb https://security.gentoo.org/glsa/202305-16 https://github.com/vim/vim/commit/3558afe9e9e904cabb8475392d859f2d2fc21041 Common Vulnerability Exposure (CVE) ID: CVE-2022-3520 https://huntr.dev/bounties/c1db3b70-f4fe-481f-8a24-0b1449c94246 https://github.com/vim/vim/commit/36343ae0fb7247e060abfd35fb8e4337b33abb4b Common Vulnerability Exposure (CVE) ID: CVE-2022-3591 https://huntr.dev/bounties/a5a998c2-4b07-47a7-91be-dbc1886b3921 https://github.com/vim/vim/commit/8f3c3c6cd044e3b5bf08dbfa3b3f04bb3f711bad Common Vulnerability Exposure (CVE) ID: CVE-2022-4141 https://huntr.dev/bounties/20ece512-c600-45ac-8a84-d0931e05541f https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AZ3JMSUCR6Y7626RDWQ2HNSUFIQOJ33G/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6ZNKVN4GICORTVFKVCM4MSOXCYWNHUC/ https://github.com/vim/vim/commit/cc762a48d42b579fb7bdec2c614636b830342dd5 https://lists.debian.org/debian-lts-announce/2023/06/msg00015.html Common Vulnerability Exposure (CVE) ID: CVE-2022-4292 https://huntr.dev/bounties/da3d4c47-e57a-451e-993d-9df0ed31f57b https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYC22GGZ6QA66HLNLHCTAJU265TT3O33/ https://github.com/vim/vim/commit/c3d27ada14acd02db357f2d16347acc22cb17e93 Common Vulnerability Exposure (CVE) ID: CVE-2022-4293 https://huntr.dev/bounties/385a835f-6e33-4d00-acce-ac99f3939143 https://github.com/vim/vim/commit/cdef1cefa2a440911c727558562f83ed9b00e16b
Copyright	Copyright (C) 2022 Greenbone AG