Fedora has issued an advisory today (January 14): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HD5S2FC2HF22A7XQXK2XXIR46EARVWIM/ The issues are fixed upstream in 8.2.4049.
Status comment: (none) => Fixed upstream in 8.2.4049
CVE-2021-46059 is already fixed in Bug 29856.
Summary: vim new security issues CVE-2021-46059, CVE-2022-0158, CVE-2022-0156 => vim new security issues CVE-2022-0158 and CVE-2022-0156
Two more CVEs fixed upstream... CVE-2022-0213 vim is vulnerable to Heap-based Buffer Overflow 8.2.4074 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0213 CVE-2022-0128 vim is vulnerable to Out-of-bounds Read 8.2.4009 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0128
Status comment: Fixed upstream in 8.2.4049 => Fixed upstream in 8.2.4074Summary: vim new security issues CVE-2022-0158 and CVE-2022-0156 => vim new security issues CVE-2022-01[25]8, CVE-2022-0156, CVE-2022-0213
This security update is clearly for Thierry.
Assignee: bugsquad => thierry.vignaud
updated to 4114 src: - vim-8.2.4114-1.mga8
Status comment: Fixed upstream in 8.2.4074 => (none)CC: (none) => mageia, thierry.vignaudAssignee: thierry.vignaud => qa-bugs
vim-X11-8.2.4114-1.mga8 vim-enhanced-8.2.4114-1.mga8 vim-minimal-8.2.4114-1.mga8 vim-common-8.2.4114-1.mga8 from vim-8.2.4114-1.mga8.src.rpm
MGA8-64 Plasma on Lenovo B50 in Dutch No installation issues. Used vimx to edit some text file using commands i , a, dd, x wq: works OK
Whiteboard: (none) => MGA8-64-OKCC: (none) => herman.viaene
Validating.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0023.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED
This update also fixed CVE-2022-0158: https://ubuntu.com/security/notices/USN-6195-1