AVG-979 log
| Package | neovim |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 0.3.5-1 |
| Fixed | 0.3.6-1 |
| Current | 0.9.5-5 [extra] |
| Ticket | None |
| Created | Thu Jun 13 14:49:17 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-12735 | High | Yes | Arbitrary code execution | getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as... |