Fedora 16 : insight-7.4.50-4.20120403cvs.fc16 (2012-18300)

Thu Nov 15 2012 Patrick Monnerat 7.4.50-4.20120403cvs - Path 'objalloc' to fix libiberty security bug CVE-2012-3509. https://bugzilla.redhat.com/showbug.cgi?id=877014 - Enable Python to support STL extensions. https://bugzilla.redhat.com/showbug.cgi?id=865554 Note that Tenable Network Security...

Fedora 17 : insight-7.4.50-4.20120403cvs.fc17 (2012-18311)

Thu Nov 15 2012 Patrick Monnerat 7.4.50-4.20120403cvs - Path 'objalloc' to fix libiberty security bug CVE-2012-3509. https://bugzilla.redhat.com/showbug.cgi?id=877014 - Enable Python to support STL extensions. https://bugzilla.redhat.com/showbug.cgi?id=865554 Note that Tenable Network Security...

Httpdx v1.5.3 Remote Break Server HTTP

Exploit for windows platform in category dos / poc ====================================================================== httpdx v1.5.3 PNG File Handling Remote Denial of Service Vulnerability ====================================================================== Vulnerable: httpdx httpdx 1.5.3...

openSUSE Security Update : gvim (gvim-561)

The VI Improved editor vim was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python cod...

openSUSE Security Update : gvim (gvim-561)

The VI Improved editor vim was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python cod...

Fedora 9 : bugzilla-3.2.3-1.fc9 (2009-3405)

Mon Apr 6 2009 Itamar Reis Peixoto 3.2.3-1 - fix CVE-2009-1213 - Thu Mar 5 2009 Itamar Reis Peixoto 3.2.2-2 - fix from BZ 474250 Comment 16, from Chris Eveleigh -- - add python BR for contrib subpackage - fix description - change Requires perl-SOAP-Lite to perlSOAP::Lite according guidelines -...

openSUSE 10 Security Update : gvim (gvim-6023)

The VI Improved editor vim was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python cod...

Code injection

src/configure.in in Vim 5.0 through 7.1, when used for a build with Python support, does not ensure that the Makefile-conf temporary file has the intended ownership and permissions, which allows local users to execute arbitrary code by modifying this file during a time window, or by creating it...

CVE-2008-3294

src/configure.in in Vim 5.0 through 7.1, when used for a build with Python support, does not ensure that the Makefile-conf temporary file has the intended ownership and permissions, which allows local users to execute arbitrary code by modifying this file during a time window, or by creating it...

CVE-2008-3294

CVE-2008-3294 affects Vim 5.0–7.1 when built with Python support. The vulnerability stems from Makefile-conf temporary file not having guaranteed ownership/permissions, allowing local users to execute arbitrary code by modifying this file during a window or by creating it beforehand with restrict...

Vim: Insecure Temporary File Creation During Build: Arbitrary Code Execution

Summary Product : Vim -- Vi IMproved Versions : 5.0--current, possibly older; 4.6 and 3.0 not vulnerable Impact : Arbitrary code execution Wherefrom: Local Original : http://www.rdancer.org/vulnerablevim-configure.in.html http://www.rdancer.org/vulnerablevim-configure.in.patch Insecure temporary...