Sync VIM to LFS
|Reported by:||Douglas R. Reno||Owned by:||Bruce Dubbs|
The current version of VIM in LFS is 8.2.3458, while the current version in BLFS is 8.2.3337
Three security vulnerabilities exist in VIM as in BLFS, but have been fixed in the version in LFS.
CVE-2021-3770 - VIM: Heap-based Buffer Overflow in ex_retab()
CVE-2021-3778 - VIM: Heap-based Buffer Overflow in utf_ptr2char()
CVE-2021-3796 - VIM: Use After Free in nv_replace()
All three of these CVEs have reproducers available as well