zeertzjq 9dc440400c vim-patch:9.0.2068: [security] overflow in :history (#25794) ...

Problem:  [security] overflow in :history
Solution: Check that value fits into int

The get_list_range() function, used to parse numbers for the :history
and :clist command internally uses long variables to store the numbers.
However function arguments are integer pointers, which can then
overflow.

Check that the return value from the vim_str2nr() function is not larger
than INT_MAX and if yes, bail out with an error. I guess nobody uses a
cmdline/clist history that needs so many entries... (famous last words).

It is only a moderate vulnerability, so impact should be low.

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-q22m-h7m2-9mgm

9198c1f2b1

N/A patch:
vim-patch:9.0.2073: typo in quickfix.c comments

Co-authored-by: Christian Brabandt <cb@256bit.org>

2023-10-27 06:37:52 +08:00

..

cjson

fix(vim.json)!: remove global options, "null", "array_mt" #24070

2023-06-21 01:10:32 -07:00

klib

feat(extmark): support proper multiline ranges

2023-09-12 10:38:23 +02:00

man

docs #22363

2023-06-19 02:24:44 -07:00

mpack

build(deps): bump libmpack-lua to 1.0.11

2023-10-09 12:37:15 +02:00

nvim

vim-patch:9.0.2068: [security] overflow in :history (#25794)

2023-10-27 06:37:52 +08:00

unicode

docs: fix/remove invalid URLs #20647

2022-10-14 08:01:13 -07:00

xdiff

refactor: the long goodbye

2023-10-09 11:45:46 +02:00

.valgrind.supp

…

bit.c

feat(lua): make sure require'bit' always works, even with PUC lua 5.1

2023-02-22 22:15:19 +01:00

bit.h

feat(lua): make sure require'bit' always works, even with PUC lua 5.1

2023-02-22 22:15:19 +01:00

clint.py

build(lint): remove unnecessary clint.py rules

2023-10-23 20:06:21 +02:00

coverity-model.c

ci(coverity): model our allocation functions

2022-05-20 08:14:20 -04:00

nlua0.c

refactor(build): include lpeg as a library

2023-04-27 11:40:00 +02:00

uncrustify.cfg

build(lint): remove unnecessary clint.py rules

2023-10-23 20:06:21 +02:00