Add CVE-2021-4193/vim

author: Salvatore Bonaccorso <carnil@debian.org> 2021-12-31 21:14:17 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-12-31 21:14:17 +0100
commit: 5f1c8231e611d840eb11eda2ec233a797dd997c7 (patch)
tree: 5c5aecaad0ac9d15dd9ea444a8a0a7c01dbfd27e
parent: afa9f12a6c609f777380143e649c72db2f52e7ed (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 150a00b746..9f5413979d 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -11,7 +11,11 @@ CVE-2021-44466 (Bitmask Riseup VPN 0.21.6 contains a local privilege escalation
 CVE-2021-4194
 	RESERVED
 CVE-2021-4193 (vim is vulnerable to Out-of-bounds Read ...)
-	TODO: check
+	- vim <unfixed>
+	[bullseye] - vim <no-dsa> (Minor issue)
+	[buster] - vim <no-dsa> (Minor issue)
+	NOTE: https://huntr.dev/bounties/92c1940d-8154-473f-84ce-0de43b0c2eb0
+	NOTE: Fixed by: https://github.com/vim/vim/commit/94f3192b03ed27474db80b4d3a409e107140738b (v8.2.3950)
 CVE-2021-4192 (vim is vulnerable to Use After Free ...)
 	- vim <unfixed>
 	[bullseye] - vim <no-dsa> (Minor issue)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-12-31 21:14:17 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-12-31 21:14:17 +0100
commit	5f1c8231e611d840eb11eda2ec233a797dd997c7 (patch)
tree	5c5aecaad0ac9d15dd9ea444a8a0a7c01dbfd27e
parent	afa9f12a6c609f777380143e649c72db2f52e7ed (diff)