Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 20 Oct 2008 05:19:05 -0400 (EDT)
From: Jan Lieskovsky <>
To: coley <>
Cc: oss-security <>,
        Jan Minář <>
Subject: CVE request (vim)

Hello Steve,

  inlining short Vim CVE list reference:

CVE-2008-3074 Vim tar.vim plugin issues (TAR-1 through TAR-5)              (1)
CVE-2008-3075 Vim zip.vim plugin issues (ZIP-1 through ZIP-4)              (2)

CVE-2008-3076 Vim netrw.vim plugin issues (netrw.v2, netrw.v3)             (3)
Affects: Vim 7.2alpha+

CVE-NONE-YET Vim netrw.vim plugin issues (netrw.v4, netrw.v5)              (4)
Affects: Vim 7.0, Vim 7.1
Reference:     (part 3 the 'D' command)
   (part 3 the 'D' command)

CVE-NONE-YET Vim netrw.vim plugin issue (FTP user credentials disclosure)   (5)
Affects: Vim 7.1, Vim 7.2

Could you please allocate two new CVE ids for case (4) and case (5)?

Thanks in advance, Jan.
Jan iankko Lieskovsky / Red Hat Security Response Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ