AVG-979 log

Package neovim
Status Fixed
Severity High
Type arbitrary code execution
Affected 0.3.5-1
Fixed 0.3.6-1
Current 0.4.3-1 [community]
Ticket None
Created Thu Jun 13 14:49:17 2019
Issue Severity Remote Type Description
CVE-2019-12735 High Yes Arbitrary code execution
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as...