Oval Definition:oval:com.redhat.rhsa:def:20070346
Revision Date:2007-05-09Version:636
Title:RHSA-2007:0346: vim security update (Moderate)
Description:VIM (VIsual editor iMproved) is a version of the vi editor.

  • An arbitrary command execution flaw was found in the way VIM processes modelines. If a user with modelines enabled opened a text file containing a carefully crafted modeline, arbitrary commands could be executed as the user running VIM. (CVE-2007-2438)

    Users of VIM are advised to upgrade to these updated packages, which resolve this issue.

    Please note: this issue did not affect VIM as distributed with Red Hat Enterprise Linux 2.1, 3, or 4.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2007-2438
    RHSA-2007:0346
    RHSA-2007:0346-01
    RHSA-2007:0346-01
    Platform(s):Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • vim-X11 is earlier than 2:7.0.109-3.el5.3
  • AND vim-X11 is signed with Red Hat redhatrelease2 key
  • vim-common is earlier than 2:7.0.109-3.el5.3
  • AND vim-common is signed with Red Hat redhatrelease2 key
  • vim-enhanced is earlier than 2:7.0.109-3.el5.3
  • AND vim-enhanced is signed with Red Hat redhatrelease2 key
  • vim-minimal is earlier than 2:7.0.109-3.el5.3
  • AND vim-minimal is signed with Red Hat redhatrelease2 key
    • BACK