Bug 14401

Summary:	[CVE 21] vim 9.0 CVE found
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Arsenii <a.konovalov>
Component:	Contributed Packages	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	major
Priority:	Normal	CC:	a.proklov, pastordidi, v.potapov
Version:	All	Flags:	v.potapov: qa_verified+ a.konovalov: secteam_verified? a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
URL:	CVE-2024-22667
Whiteboard:
Platform:	2021.1	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Arsenii 2024-04-09 15:45:10 MSK

https://nvd.nist.gov/vuln/detail/CVE-2024-22667 HIGH

Comment 1 Aleksandr Proklov 2024-04-10 04:23:00 MSK

уязвимость закрыта обновлением версии

vim	9.1.0104-1

https://abf.io/build_lists/5016868
https://abf.io/build_lists/5016869
https://abf.io/build_lists/5016870
https://abf.io/build_lists/5016871
https://abf.io/build_lists/5016872

Comment 2 Dmitry Postnikov 2024-04-10 12:31:36 MSK

*****************************
Обновление отослано в Тестинг

Comment 3 Vladimir Potapov 2024-04-17 09:29:55 MSK

vim-9.1.0104-1
https://abf.io/build_lists/5016868
https://abf.io/build_lists/5016869
https://abf.io/build_lists/5016870
https://abf.io/build_lists/5016871
https://abf.io/build_lists/5016872
************************** Advisory ***************************
CVE-2024-22667 fix by version update
***************************************************************
QA Verified