Lucene search
RedHatRHSA-2016:2972HistoryDec 21, 2016 - 1:01 a.m.
(RHSA-2016:2972) Moderate: vim security update
2016-12-2101:01:15
access.redhat.com
353
0.8 High
EPSS
Percentile
98.3%
Vim (Vi IMproved) is an updated and improved version of the vi editor.
Security Fix(es):
- A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim. (CVE-2016-1248)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | vim-x11 | < 7.4.629-5.el6_8.1 | vim-X11-7.4.629-5.el6_8.1.x86_64.rpm |
| RedHat | 7 | ppc64 | vim-minimal | < 7.4.160-1.el7_3.1 | vim-minimal-7.4.160-1.el7_3.1.ppc64.rpm |
| RedHat | 7 | s390x | vim-x11 | < 7.4.160-1.el7_3.1 | vim-X11-7.4.160-1.el7_3.1.s390x.rpm |
| RedHat | 7 | aarch64 | vim-filesystem | < 7.4.160-1.el7_3.1 | vim-filesystem-7.4.160-1.el7_3.1.aarch64.rpm |
| RedHat | 6 | ppc64 | vim-common | < 7.4.629-5.el6_8.1 | vim-common-7.4.629-5.el6_8.1.ppc64.rpm |
| RedHat | 7 | aarch64 | vim-enhanced | < 7.4.160-1.el7_3.1 | vim-enhanced-7.4.160-1.el7_3.1.aarch64.rpm |
| RedHat | 6 | s390x | vim-common | < 7.4.629-5.el6_8.1 | vim-common-7.4.629-5.el6_8.1.s390x.rpm |
| RedHat | 6 | s390x | vim-enhanced | < 7.4.629-5.el6_8.1 | vim-enhanced-7.4.629-5.el6_8.1.s390x.rpm |
| RedHat | 7 | ppc64le | vim-debuginfo | < 7.4.160-1.el7_3.1 | vim-debuginfo-7.4.160-1.el7_3.1.ppc64le.rpm |
| RedHat | 6 | ppc64 | vim-enhanced | < 7.4.629-5.el6_8.1 | vim-enhanced-7.4.629-5.el6_8.1.ppc64.rpm |
Related
nessus
nessus
SUSE SLED12 / SLES12 Security Update : vim (SUSE-SU-2016:2942-1)
2016-11-29 00:00:00
CentOS 6 / 7 : vim (CESA-2016:2972)
2016-12-22 00:00:00
OracleVM 3.3 / 3.4 : vim (OVMSA-2016-0182)
2016-12-22 00:00:00
cloudfoundry
cloudfoundry
USN-3139-1: Vim vulnerability | Cloud Foundry
2016-12-14 00:00:00
debian
debian
[SECURITY] [DSA 3722-1] vim security update
2016-11-22 16:41:44
[SECURITY] [DSA 3722-1] vim security update
2016-11-22 16:41:44
[SECURITY] [DLA 718-1] vim security update
2016-11-22 17:07:45
checkpoint_advisories
checkpoint_advisories
Vim modelines Remote Command Execution (CVE-2016-1248)
2016-12-28 00:00:00
archlinux
archlinux
[ASA-201611-29] neovim: arbitrary command execution
2016-11-29 00:00:00
cve
cve
CVE-2016-1248
2016-11-23 15:59:00
openvas
openvas
openSUSE: Security Advisory for vim (openSUSE-SU-2016:2993-1)
2017-02-22 00:00:00
Debian Security Advisory DSA 3722-1 (vim - security update)
2016-11-22 00:00:00
Debian: Security Advisory (DSA-3722-1)
2016-11-21 00:00:00
suse
suse
Security update for vim (important)
2016-12-04 22:07:19
Security update for vim (important)
2016-12-04 22:07:04
Security update for vim (important)
2016-11-29 17:07:20
oraclelinux
oraclelinux
vim security update
2016-12-20 00:00:00
osv
osv
vim - security update
2016-11-22 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:15:07
ubuntucve
ubuntucve
CVE-2016-1248
2016-11-23 00:00:00
cvelist
cvelist
CVE-2016-1248
2016-11-23 15:00:00
nvd
nvd
CVE-2016-1248
2016-11-23 15:59:00
amazon
amazon
Important: vim
2016-12-19 16:30:00
debiancve
debiancve
CVE-2016-1248
2016-11-23 15:59:00
ibm
ibm
freebsd
freebsd
vim -- arbitrary command execution
2016-11-22 00:00:00
redhatcve
redhatcve
CVE-2016-1248
2016-11-24 10:17:49
centos
centos
vim security update
2016-12-21 17:28:53
gentoo
gentoo
Vim, gVim: Remote execution of arbitrary code
2017-01-11 00:00:00
f5
f5
K22183127 : Vim vulnerability CVE-2016-1248
2017-03-20 00:00:00
ubuntu
ubuntu
Vim vulnerability
2016-11-29 00:00:00
prion
prion
Design/Logic Flaw
2016-11-23 15:59:00
alpinelinux
alpinelinux
CVE-2016-1248
2016-11-23 15:59:00
exploitpack
exploitpack
Vim 8.1.1365 Neovim 0.3.6 - Arbitrary Code Execution
2019-06-04 00:00:00
exploitdb
exploitdb
Vim < 8.1.1365 / Neovim < 0.3.6 - Arbitrary Code Execution
2019-06-04 00:00:00
mageia
mageia
Updated vim packages fix security vulnerabilities
2017-08-17 11:02:00
photon
photon
apple
apple
About the security content of macOS Sierra 10.12.3 - Apple Support
2017-03-28 11:17:25
About the security content of macOS Sierra 10.12.3
2017-01-23 00:00:00