Fedora Core 6 Update: vim-7.0.235-1.fc6 - The Community's Center for Security


The central voice for Linux and Open Source security news

Welcome!

Sign up!

EnGarde Community

Polls

What is the most important Linux security technology?

	SELinux
	grsecurity
	CIS Benchmark
	Bastille Linux
	iptables
	LIDS

Advisories

Community

Linux Events

Linux User Groups

Link to Us

Security Center

Book Reviews

Security Dictionary

Security Tips

SELinux

White Papers

Featured Blogs

All About Linux

DanWalsh LiveJournal

Securitydistro

Latest Newsletters

Linux Security Week: June 29th, 2009

Linux Advisory Watch: June 26th, 2009

LinuxSecurity Newsletters

RSS Feeds

Get the LinuxSecurity news you want faster with RSS

Fedora Core 6 Update: vim-7.0.235-1.fc6

User Rating:

How can I rate this item?

Posted by Benjamin D. Thomas

This update fixes several issues where opening a malicious file with vim can run an arbitrary command via modeline

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-492
2007-05-07
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : vim
Version     : 7.0.235
Release     : 1.fc6
Summary     : The VIM editor
Description :
VIM (VIsual editor iMproved) is an updated and improved version of the
vi editor.  Vi was the first real screen-based editor for UNIX, and is
still very popular.  VIM improves on vi by adding new features:
multiple windows, multi-level undo, block highlighting and more.

---------------------------------------------------------------------
Update Information:

This update fixes several issues where opening a malicious
file with vim can run an arbitrary command via modeline
---------------------------------------------------------------------
* Thu May  3 2007 Karsten Hopp  7.0.235-1
- rebuild for FC-6
* Mon Apr 30 2007 Karsten Hopp  7.0.235-1
- update to patchlevel 235, fixes modeline issues
* Tue Apr 17 2007 Karsten Hopp  7.0.224-3
- fix typo in require line (vim-X11 - 2:7.0.224-2.fc7.i386 requires 4)
* Mon Apr 16 2007 Karsten Hopp  7.0.224-2
- use more macros
- drop BR perl
- move license to main doc directory
- set vendor to 'fedora' (desktop-file)
- don't own man directories
- preserve timestamps of non-generated files
- run update-desktop-database
* Thu Apr  5 2007 Karsten Hopp  7.0.224-1
- vim-X11 provides gvim
* Fri Mar 30 2007 Karsten Hopp  7.0.224-1
- patchlevel 224

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

ee8f8842dbf32465e0c88826fc61c2fa592987f9  SRPMS/vim-7.0.235-1.fc6.src.rpm
ee8f8842dbf32465e0c88826fc61c2fa592987f9  noarch/vim-7.0.235-1.fc6.src.rpm
844c7446d9830cc7dcff17df894663806b03e8c2  ppc/vim-enhanced-7.0.235-1.fc6.ppc.rpm
11a0b358ba63eb79800ad2070721edfdcd840423  ppc/vim-X11-7.0.235-1.fc6.ppc.rpm
4a221fa84540f2e62e186343462b69e608fd1f35  ppc/vim-common-7.0.235-1.fc6.ppc.rpm
274b5bbaa99f646e81bb59ff15c985f3f40c79e1  ppc/vim-minimal-7.0.235-1.fc6.ppc.rpm
3d6b144ed7a827aab34d04098b5da13a75161a8a  ppc/debug/vim-debuginfo-7.0.235-1.fc6.ppc.rpm
1e7dea697bccc50200b1acc73a8dcee7a807ced1  x86_64/debug/vim-debuginfo-7.0.235-1.fc6.x86_64.rpm
8067840792fffbeb2540b5ae26c63117faff31cb  x86_64/vim-minimal-7.0.235-1.fc6.x86_64.rpm
ad364dc860caf70aa930eccba61e691ff186e8ed  x86_64/vim-enhanced-7.0.235-1.fc6.x86_64.rpm
ff0e6fa4ce37439b3b20f6de53ade3199ece3f05  x86_64/vim-common-7.0.235-1.fc6.x86_64.rpm
014fe19cdf7cc2fda384e0132801945bc0ef7e2d  x86_64/vim-X11-7.0.235-1.fc6.x86_64.rpm
e267c82124c78dad73b2b68d336300249a36084d  i386/vim-minimal-7.0.235-1.fc6.i386.rpm
64cec05bfa9dcc0f3ce1f31e7cb997207f6a35be  i386/vim-common-7.0.235-1.fc6.i386.rpm
ea9b3e07b6c8c907bb0a488f54f8329001468065  i386/vim-enhanced-7.0.235-1.fc6.i386.rpm
d9b2d1c644a4280197f93d3d430d6eb0b6552156  i386/vim-X11-7.0.235-1.fc6.i386.rpm
51c29643ffd7c1fd24b3425e14edc35f9b46a178  i386/debug/vim-debuginfo-7.0.235-1.fc6.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

< Prev		Next >

Partner:

Latest Features

Review: Googling Security: How Much Does Google Know About You

A Secure Nagios Server

Never Installed a Firewall on Ubuntu? Try Firestarter

Review: Hacking Exposed Linux, Third Edition

Security Features of Firefox 3.0

Review: The Book of Wireless

April 2008 Open Source Tool of the Month: sudo

Weekend Edition

QuickLinks: Comunity , HOWTOs , Blogs , Features , Book Reviews , Networking ,
Security Projects , Latest News , Newsletters , SELinux , Privacy , Home,
Hardening , About Us, Advertise, Legal Notice, RSS, Guardian Digital
Home Security Systems, Surveillance Cameras