Fedora has issued an advisory today (June 2): https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/QMFHBC5OQXDPV2SDYA2JUQGVCPYASTJB/ The issues are fixed upstream in 8.2.5037.
Status comment: (none) => Fixed upstream in 8.2.5037
vim is Thierry's baby, so assigning to you. I see you have already committed an even more recent version 8.2.5052 in Cauldron.
Assignee: bugsquad => thierry.vignaud
pushed in mga8 src: - vim-8.2.5052-1.mga8
CC: (none) => mageia, thierry.vignaudAssignee: thierry.vignaud => qa-bugsStatus comment: Fixed upstream in 8.2.5037 => (none)
vim-X11-8.2.5052-1.mga8 vim-enhanced-8.2.5052-1.mga8 vim-minimal-8.2.5052-1.mga8 vim-common-8.2.5052-1.mga8 from vim-8.2.5052-1.mga8.src.rpm
mga8, x64 Packages updated OK. Edited some program scripts> Automatic indenting and syntax highlighting work as before. No regressions evident in the common commands, inline or in command mode. These are fine for 64-bits.
CC: (none) => tarazed25Whiteboard: (none) => MGA8-64-OK
Fedora has issued an advisory on June 7: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/TYNK6SDCMOLQJOI3B4AOE66P2G2IH4ZM/ It fixes two additional issues fixed upstream in 8.2.5043.
Summary: vim new security issues CVE-2022-1851, CVE-2022-189[78], CVE-2022-1927 => vim new security issues CVE-2022-1851, CVE-2022-1886, CVE-2022-189[78], CVE-2022-1927, CVE-2022-1942
Validating.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => advisoryCC: (none) => davidwhodgins
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0223.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED
This update also fixed CVE-2022-1785 CVE-2022-1796: https://lists.suse.com/pipermail/sle-security-updates/2022-June/011301.html
(In reply to David Walser from comment #8) > This update also fixed CVE-2022-1785 CVE-2022-1796: > https://lists.suse.com/pipermail/sle-security-updates/2022-June/011301.html also: https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/A7IIKQP3UXOLJI2SID6AOU2NSGRK776Z/
This update also fixed CVE-2022-1968: https://www.debian.org/lts/security/2022/dla-3053
Summary: vim new security issues CVE-2022-1851, CVE-2022-1886, CVE-2022-189[78], CVE-2022-1927, CVE-2022-1942 => vim new security issues CVE-2022-1851, CVE-2022-1886, CVE-2022-189[78], CVE-2022-1927, CVE-2022-1942, CVE-2022-1968
Summary: vim new security issues CVE-2022-1851, CVE-2022-1886, CVE-2022-189[78], CVE-2022-1927, CVE-2022-1942, CVE-2022-1968 => vim new security issues CVE-2022-1785, CVE-2022-1796, CVE-2022-1851, CVE-2022-1886, CVE-2022-189[78], CVE-2022-1927, CVE-2022-1942, CVE-2022-1968