Wednesday, December 14, 2022

Re: version 9.0 and patches

On Di, 13 Dez 2022, Michael.Pearson2 via vim_use wrote:

> CVE-2022-4293

The fix is https://github.com/vim/vim/releases/tag/v9.0.0804

> CVE-2022-4292

The fix is https://github.com/vim/vim/releases/tag/v9.0.0882

> CVE-2022-3491

The fix is https://github.com/vim/vim/releases/tag/v9.0.0742

> CVE-2022-3520

The fix is https://github.com/vim/vim/releases/tag/v9.0.0765

> CVE-2022-3591

The fix is https://github.com/vim/vim/releases/tag/v9.0.0789

> Is there a cumulative patch for version 9 that will encompass all the
> patches for all the following CVE's?

No, we do not provide cumulative patches. If you are installing vim,
best is always to go from the lastest patch in the master branch and
keep it updated regularly.

If you are using a Distribution with Security Support, it will probably
take care of those. But you should check with the maintainers separately
to be sure.


Best,
Christian
--
Gib einem Mann einen Fisch und du ernährst ihn für einen Tag.
Lehre einen Mann zu fischen und du ernährst ihn für sein Leben.
-- Konfuzius (551-479 v. Chr.)

--
--
You received this message from the "vim_use" maillist.
Do not top-post! Type your reply below the text you are replying to.
For more information, visit http://www.vim.org/maillist.php

---
You received this message because you are subscribed to the Google Groups "vim_use" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vim_use+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/vim_use/20221214083005.GD3184211%40256bit.org.

No comments: