]> git.ipfire.org Git - thirdparty/vim.git/commit
projects / thirdparty / vim.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8bd1b7c) | patch
patch 9.1.2132: [security]: buffer-overflow in 'helpfile' option handling v9.1.2132
authorChristian Brabandt <cb@256bit.org>
Thu, 5 Feb 2026 18:51:54 +0000 (18:51 +0000)
committerChristian Brabandt <cb@256bit.org>
Thu, 5 Feb 2026 19:01:12 +0000 (19:01 +0000)
commit0714b15940b245108e6e9d7aa2260dd849a26fa9
treecb38f267fecf3e365ad0238dcf4dbc8d986131c5tree | snapshot
parent8bd1b7c51e3d31573ac49e8c59995151f2ea7913commit | diff
patch 9.1.2132: [security]: buffer-overflow in 'helpfile' option handling

Problem:  [security]: buffer-overflow in 'helpfile' option handling by
          using strcpy without bound checks (Rahul Hoysala)
Solution: Limit strncpy to the length of the buffer (MAXPATHL)

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-5w93-4g67-mm43

Signed-off-by: Christian Brabandt <cb@256bit.org>
runtime/doc/version9.txt diff | blob | blame | history
src/tag.c diff | blob | blame | history
src/testdir/test_help.vim diff | blob | blame | history
src/version.c diff | blob | blame | history
Mirror of https://github.com/vim/vim.git