[Buildroot] [PATCH 1/1] package/vim: security bump to version 8.2.4843
Fabrice Fontaine
fontaine.fabrice at gmail.com
Thu Apr 28 20:49:32 UTC 2022
Fix CVE-2022-1381: global heap buffer overflow in skip_range in GitHub
repository vim/vim prior to 8.2.4763. This vulnerability is capable of
crashing software, Bypass Protection Mechanism, Modify Memory, and
possible remote execution
Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
---
package/vim/vim.hash | 2 +-
package/vim/vim.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/vim/vim.hash b/package/vim/vim.hash
index d55b1ea355..1cd0de9991 100644
--- a/package/vim/vim.hash
+++ b/package/vim/vim.hash
@@ -1,4 +1,4 @@
# Locally computed
-sha256 ccd57b074326b2faa15591eba3c86dcc07e53781079c44a0354436b8c4fe9b70 vim-8.2.4732.tar.gz
+sha256 f2755fca3b2f47052166dd601a38411b9adbeca0d43885194db8ada4d1a171a3 vim-8.2.4843.tar.gz
sha256 0bcab3b635dd39208c42b496568d1e8171dad247cf3da5bab3d750c9d5883499 LICENSE
sha256 96970b67f9cb38b0e759946cff22562a3c4b11ce78f62f2117d5e7ecded9ab4d README.txt
diff --git a/package/vim/vim.mk b/package/vim/vim.mk
index 4eb659fd6e..be96a08d09 100644
--- a/package/vim/vim.mk
+++ b/package/vim/vim.mk
@@ -4,7 +4,7 @@
#
################################################################################
-VIM_VERSION = 8.2.4732
+VIM_VERSION = 8.2.4843
VIM_SITE = $(call github,vim,vim,v$(VIM_VERSION))
VIM_DEPENDENCIES = ncurses $(TARGET_NLS_DEPENDENCIES)
VIM_SUBDIR = src
--
2.35.1
More information about the buildroot
mailing list