[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1444-1] vim-syntastic security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : vim-syntastic
Version        : 3.5.0-1+deb8u1
CVE ID         : CVE-2018-11319


CVE-2018-11319
     The improper handling of search for configuration files might be
     exploited for arbitrary code execution via a malicious gcc plugin.


For Debian 8 "Jessie", this problem has been fixed in version
3.5.0-1+deb8u1.

We recommend that you upgrade your vim-syntastic packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQJ8BAEBCgBmBQJbWirMXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5
NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHBKcQALcaONw2ptUL8447+gXpT1uo
mETy1WWea4NFX7WsFYKsEQGRd8ALIPnAlwDoFbwdHjLNLRYkVk9XF5yJoX48Ou3+
pzi/s9pueutGWtAZM8F5HKeIvFFqdSnwxgQAUfwCia0o7s2woc2lWvH/LRi0b7kL
TT0sZQnycATs8pps5bDMe2FyfELO83spuGU8ZATzHG2xnwHFUpRR2sQOdWzFaUag
WC0kqpAz1yagd4sia1lwsh/NQpDW4M5u9zY3GhKS3nAodRPAeOz778cwiR/bhN2b
Mxd7FVGz3P/UQOunixXrwC3wJnkQf8j2ZtkTtqn2q5SusRiJ7qEtXSznc57HB+IR
q4zbFIRHY+Xhv4y1zVsUOWJewMfZINHbQPIAEgkjZLud+PWnCetbVCRmH+u5KzDl
ZOSrWbasuXmwdtKP2MN6aGtCnBuqkbHouyHSflxlEj4PvHV3/fheSU9jUViKnNYW
Onx0sv/wdtRp8P44nqZjZjufc33jdxnoGUNEjGuZAToimjK2NWwY7j96P36/Jp5J
BiJfjFvfwfwEOT4k/NO/Mi9PDVSAA/PjlFfZmaSZRxkIy8XOAaJ0g6z5Kncoc5Ff
/wt/W26qHWf+sj9jgFevOeRjoaaU+McPtrTTWLH7RlDHvDglpPb5ZDhh2Z2qJD0n
eJb/4VUQIxGu3sbod0Ga
=KdLW
-----END PGP SIGNATURE-----


Reply to: