oss-sec mailing list archives
CVE request (vim)
From: Jan Lieskovsky <jlieskov () redhat com>
Date: Mon, 20 Oct 2008 05:19:05 -0400 (EDT)
Hello Steve, inlining short Vim CVE list reference: -- CVE-2008-3074 Vim tar.vim plugin issues (TAR-1 through TAR-5) (1) CVE-2008-3075 Vim zip.vim plugin issues (ZIP-1 through ZIP-4) (2) References: http://www.openwall.com/lists/oss-security/2008/08/01/1 -- CVE-2008-3076 Vim netrw.vim plugin issues (netrw.v2, netrw.v3) (3) Affects: Vim 7.2alpha+ References: http://www.rdancer.org/vulnerablevim-netrw.html http://www.rdancer.org/vulnerablevim-netrw.v2.html -- CVE-NONE-YET Vim netrw.vim plugin issues (netrw.v4, netrw.v5) (4) Affects: Vim 7.0, Vim 7.1 Reference: http://www.rdancer.org/vulnerablevim-netrw.html (part 3 the 'D' command) http://www.rdancer.org/vulnerablevim-netrw.v2.html (part 3 the 'D' command) http://www.rdancer.org/vulnerablevim-netrw.v5.html -- CVE-NONE-YET Vim netrw.vim plugin issue (FTP user credentials disclosure) (5) Affects: Vim 7.1, Vim 7.2 References: http://www.rdancer.org/vulnerablevim-netrw-credentials-dis.html Could you please allocate two new CVE ids for case (4) and case (5)? Thanks in advance, Jan. -- Jan iankko Lieskovsky / Red Hat Security Response Team
Current thread:
- CVE request (vim) Jan Lieskovsky (Oct 20)