Update information on CVE-2019-20079/vim

author: Salvatore Bonaccorso <carnil@debian.org> 2021-09-23 22:07:15 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-09-23 22:07:15 +0200
commit: 6499afd93f9c983fce15d0ed85275d52cfa3e5f9 (patch)
tree: d3f7b34ae104748ab295a3408d732e7ccd289022 /data/CVE/list.2019
parent: e8768546630826a2d50058aa2e91d5e5bfa75647 (diff)
1 files changed, 3 insertions, 2 deletions
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019
index b6001b634e..c4b8087a88 100644
--- a/data/CVE/list.2019
+++ b/data/CVE/list.2019
@@ -2434,11 +2434,12 @@ CVE-2019-20080
 	RESERVED
 CVE-2019-20079 (The autocmd feature in window.c in Vim before 8.1.2136 accesses freed  ...)
 	- vim 2:8.1.2136-1
-	[buster] - vim <no-dsa> (Minor issue)
+	[buster] - vim <not-affected> (Vulnerable code introduced later)
 	[stretch] - vim <not-affected> (Vulnerable code introduced later)
 	[jessie] - vim <not-affected> (vulnerable code was introduced later)
 	NOTE: https://github.com/vim/vim/issues/5041
-	NOTE: https://github.com/vim/vim/commit/ec66c41d84e574baf8009dbc0bd088d2bc5b2421
+	NOTE: Introduced with: https://github.com/vim/vim/commit/a27e1dcddc9e3914ab34b164f71c51b72903b00b (v8.1.2121)
+	NOTE: Fixed by: https://github.com/vim/vim/commit/ec66c41d84e574baf8009dbc0bd088d2bc5b2421 (v8.1.2136)
 CVE-2019-20078
 	RESERVED
 CVE-2019-20077 (The Typesetter CMS 5.1 logout functionality is affected by a CSRF vuln ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-09-23 22:07:15 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-09-23 22:07:15 +0200
commit	6499afd93f9c983fce15d0ed85275d52cfa3e5f9 (patch)
tree	d3f7b34ae104748ab295a3408d732e7ccd289022 /data/CVE/list.2019
parent	e8768546630826a2d50058aa2e91d5e5bfa75647 (diff)