CentOS 6 ELS: vim package gradual rollout

TuxCare Team

December 15, 2021

changelog

A new updated vim package within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.

Rollout slot: 1
Rolled out to: 0.1%
ETA for 100% rollout: December 29

CHANGELOG

vim 7.4.629-5.2.el6.tuxcare.els4

  • CVE-2021-3974: fix using freed memory with regexp using a mark
  • CVE-2021-3984: fix illegal memory access when C-indenting
  • CVE-2021-3973: fix crash when using CTRL-W f without finding a file name
  • CVE-2021-4019: fix buffer overflow with long help argument
  • CVE-2021-4069: fix using freed memory in open command

UPDATE COMMAND

yum update vim*

IMMEDIATE UPDATE (VIA BYPASS)

yum update vim* --enablerepo=ELS6-rollout-1-bypass

 

Stay in the Loop