Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in vim-syntastic
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in vim-syntastic
ID: FEDORA-2018-a10c1d234e
Distribution: Fedora
Plattformen: Fedora 27
Datum: Mi, 8. August 2018, 18:32
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11319
Applikationen: vim-syntastic

Originalnachricht

-------------------------------------------------------------------------------
-
Fedora Update Notification
FEDORA-2018-a10c1d234e
2018-08-08 15:32:12.724729
-------------------------------------------------------------------------------
-

Name : vim-syntastic
Product : Fedora 27
Version : 3.9.0
Release : 1.fc27
URL : https://github.com/scrooloose/syntastic
Summary : A vim plugins to check syntax for programming languages
Description :
Syntastic is a syntax checking plugin that runs files through external syntax
checkers and displays any resulting errors to the user. This can be done on
demand, or automatically as files are saved. If syntax errors are detected, the
user is notified and is happy because they didn't have to compile their
code or
execute their script to find them.

-------------------------------------------------------------------------------
-
Update Information:

new upstream release v3.9.0
-------------------------------------------------------------------------------
-
ChangeLog:

* Mon Apr 23 2018 Pavel Raiskup <praiskup@redhat.com> - 3.9.0-1
- new upstream release, per release notes:
https://github.com/vim-syntastic/syntastic/releases/tag/3.9.0
* Tue Apr 10 2018 Philippe Makowski <makowski@fedoraproject.org> -
3.8.0-12
- add text subpackage, fix rhbz#1562001
* Fri Feb 9 2018 Fedora Release Engineering <releng@fedoraproject.org> -
3.8.0-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1580432 - CVE-2018-11319 vim-syntastic: Improper handling of
searches for configuration files can lead to arbitrary code execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1580432
-------------------------------------------------------------------------------
-

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-a10c1d234e' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XQG3TJ7OXOQ45IEY62NV5VMGNK5CV7WQ/
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung