CVE-2017-5953 log

Severity Medium
Remote No
Type Arbitrary code execution
It was found that vim does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer overflow.
Group Package Affected Fixed Severity Status Ticket
AVG-174 gvim, vim 8.0.0321-1 8.0.0322-1 Medium Fixed
Date Advisory Group Package Severity Type
15 Feb 2017 ASA-201702-13 AVG-174 vim Medium arbitrary code execution
15 Feb 2017 ASA-201702-12 AVG-174 gvim Medium arbitrary code execution