AVG-174 log

Package gvim, vim
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 8.0.0321-1
Fixed 8.0.0322-1
Current 9.1.0866-2 [extra-testing]
9.1.0866-1 [extra]
Ticket None
Created Wed Feb 15 14:11:56 2017
Issue Severity Remote Type Description
CVE-2017-5953 Medium No Arbitrary code execution
It was found that vim does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory...
Date Advisory Package Type
15 Feb 2017 ASA-201702-13 vim arbitrary code execution
15 Feb 2017 ASA-201702-12 gvim arbitrary code execution