Описание
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| vim | fixed | 2:8.1.2136-1 | package | |
| vim | fixed | 2:8.1.0875-5+deb10u1 | buster | package |
| vim | no-dsa | jessie | package |
Примечания
https://github.com/vim/vim/commit/8c62a08faf89663e5633dc5036cd8695c80f1075
Связанные уязвимости
CVSS3: 5.3
ubuntu
больше 5 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVSS3: 5.3
redhat
почти 6 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
CVSS3: 5.3
nvd
больше 5 лет назад
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua).
