diff options
Diffstat (limited to 'ChangeLog.txt')
-rw-r--r-- | ChangeLog.txt | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/ChangeLog.txt b/ChangeLog.txt index 42582d7ed..b4dd9e296 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,22 @@ +Wed Mar 30 22:37:05 UTC 2022 +ap/vim-8.2.4649-x86_64-1.txz: Upgraded. + Fixes a use-after-free in utf_ptr2char in vim/vim prior to 8.2.4646. + This vulnerability is capable of crashing software, bypassing protection + mechanisms, modifying memory, and possibly execution of arbitrary code. + Thanks to marav for the heads-up. + For more information, see: + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1154 + https://huntr.dev/bounties/7f0ec6bc-ea0e-45b0-8128-caac72d23425 + https://github.com/vim/vim/commit/b55986c52d4cd88a22d0b0b0e8a79547ba13e1d5 + (* Security fix *) +d/cmake-3.23.0-x86_64-1.txz: Upgraded. +d/meson-0.61.4-x86_64-1.txz: Upgraded. +l/harfbuzz-4.2.0-x86_64-1.txz: Upgraded. +l/libcap-ng-0.8.3-x86_64-1.txz: Upgraded. +l/mlt-7.6.0-x86_64-1.txz: Upgraded. +x/xdg-desktop-portal-1.14.2-x86_64-1.txz: Upgraded. +xap/vim-gvim-8.2.4649-x86_64-1.txz: Upgraded. ++--------------------------+ Tue Mar 29 20:16:24 UTC 2022 a/inih-55-x86_64-1.txz: Upgraded. a/inotify-tools-3.22.1.0-x86_64-1.txz: Upgraded. |