Add CVE-2021-3875/vim

author: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 22:20:06 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 22:20:06 +0200
commit: 4111cca1b7aad7d23c45742dcd0fa2d432eefd1c (patch)
tree: b5f78b45330f7957a70eb09e7ec13aa95c080a73
parent: e7d26434fb04506386605d76f6805b6a78b38e07 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 54464e28ae..0f5daf97ca 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -885,7 +885,9 @@ CVE-2021-42134 (The Unicorn framework before 0.36.1 for Django allows XSS via a
 CVE-2021-3876
 	RESERVED
 CVE-2021-3875 (vim is vulnerable to Heap-based Buffer Overflow ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/5cdbc168-6ba1-4bc2-ba6c-28be12166a53/
+	NOTE: https://github.com/vim/vim/commit/35a319b77f897744eec1155b736e9372c9c5575f (v8.2.3489)
 CVE-2021-42133
 	RESERVED
 CVE-2021-42132
author	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 22:20:06 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 22:20:06 +0200
commit	4111cca1b7aad7d23c45742dcd0fa2d432eefd1c (patch)
tree	b5f78b45330f7957a70eb09e7ec13aa95c080a73
parent	e7d26434fb04506386605d76f6805b6a78b38e07 (diff)