<feed xmlns='http://www.w3.org/2005/Atom'>
<title>linux/poky.git/meta/recipes-support/vim/files, branch nanbield</title>
<subtitle>Mirror of git.yoctoproject.org/poky</subtitle>
<id>https://git.enea.com/cgit/linux/poky.git/atom?h=nanbield</id>
<link rel='self' href='https://git.enea.com/cgit/linux/poky.git/atom?h=nanbield'/>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/'/>
<updated>2022-08-02T10:30:00+00:00</updated>
<entry>
<title>vim: update from 9.0.0063 to 9.0.0115</title>
<updated>2022-08-02T10:30:00+00:00</updated>
<author>
<name>Randy MacLeod</name>
<email>randy.macleod@windriver.com</email>
</author>
<published>2022-08-01T12:52:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=44cc49c67984f039dd9a9ef10681ef7ac381529a'/>
<id>urn:sha1:44cc49c67984f039dd9a9ef10681ef7ac381529a</id>
<content type='text'>
Drop crosscompile.patch which was merged as part of:
   509695c1c (tag: v9.0.0065) patch 9.0.0065: \
      cross-compiling doesn't work because of timer_create check

Also drop: racefix.patch which may have been fixed upstream
and is being tracked by:
   https://github.com/vim/vim/pull/10776
where upstream is asking if the different approach resolves the
race condition. Let's see what's out there!

(From OE-Core rev: 6996472cd33d2d4b91821f2dfe24a27a697e4afe)

Signed-off-by: Randy MacLeod &lt;Randy.MacLeod@windriver.com&gt;
Signed-off-by: Luca Ceresoli &lt;luca.ceresoli@bootlin.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: Upgrade 9.0.0021 -&gt; 9.0.0063</title>
<updated>2022-07-25T21:59:00+00:00</updated>
<author>
<name>Richard Purdie</name>
<email>richard.purdie@linuxfoundation.org</email>
</author>
<published>2022-07-24T09:38:24+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=960ddcc609b313d99d4e3deaa247a4b49c4f8d6a'/>
<id>urn:sha1:960ddcc609b313d99d4e3deaa247a4b49c4f8d6a</id>
<content type='text'>
Pulls in several CVE fixes.
Added a patch to avoid timer_create cross compile issue (and submitted upstream).
Also submit the race fix upstream.
We disable timer_create in the native case since some systems have it
and some don't so this makes us consistent.

(From OE-Core rev: d0c1de084c7ce030d47a428e4bbfbc4ce2996057)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: not adjust script pathnames for native scripts either</title>
<updated>2022-07-12T22:56:10+00:00</updated>
<author>
<name>Mingli Yu</name>
<email>mingli.yu@windriver.com</email>
</author>
<published>2022-07-08T08:00:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=666a30a5beb0c201a34ed359cd06de427ecaebf1'/>
<id>urn:sha1:666a30a5beb0c201a34ed359cd06de427ecaebf1</id>
<content type='text'>
After the below commit introduced, the shebang size of native scripts
is also checked, so rework the patch to fix the gap.
377fe11bc0 insane.bbclass: Make do_qa_staging check shebangs

Fixes:
   ERROR: QA Issue: : /work/x86_64-linux/vim-native/9.0.0005-r0/sysroot-destdir/work/x86_64-linux/vim-native/9.0.0005-r0/recipe-sysroot-native/usr/share/vim/vim90/tools/mve.awk maximum shebang size exceeded, the maximum size is 128. [shebang-size]
   ERROR: QA Issue: : /work/x86_64-linux/vim-native/9.0.0005-r0/sysroot-destdir/work/x86_64-linux/vim-native/9.0.0005-r0/recipe-sysroot-native/usr/share/vim/vim90/tools/efm_perl.pl maximum shebang size exceeded, the maximum size is 128. [shebang-size]

(From OE-Core rev: 79232458b9cdc741a2049d83839af73f58a5554c)

Signed-off-by: Mingli Yu &lt;mingli.yu@windriver.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: upgrade to 8.2 patch 3752</title>
<updated>2021-12-08T20:22:11+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross@burtonini.com</email>
</author>
<published>2021-12-06T14:49:53+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=5cfc6ef28decae29e3866ea30bf7298182eb26de'/>
<id>urn:sha1:5cfc6ef28decae29e3866ea30bf7298182eb26de</id>
<content type='text'>
There's a fairly constant flow of CVEs being fixed in Vim, which are
getting increasing non-trivial to backport.

Instead of trying to backport (and potentially introduce more bugs), or
just ignoring them entirely, upgrade vim to the latest patch in the hope
that vim 8.3 will be released before we release Kirkstone.

(From OE-Core rev: 78a4796de27d710f97c336d288d797557a58694e)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: fix CVE-2021-3968 and CVE-2021-3973</title>
<updated>2021-12-01T16:23:45+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross@burtonini.com</email>
</author>
<published>2021-11-30T16:53:12+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=3eecf843e7f9462d743dc766ba25cfaa5f48b3e0'/>
<id>urn:sha1:3eecf843e7f9462d743dc766ba25cfaa5f48b3e0</id>
<content type='text'>
Backport a fix for -3972, and whitelist -3968: it isn't valid as it
fixes a bug which was introduced after 8.2.

(From OE-Core rev: bec5caadfb53638748d8c41ce7230c2bf7808d27)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>patches: correct whitespace/spelling for Upstream-Status tags</title>
<updated>2021-11-21T11:05:02+00:00</updated>
<author>
<name>Alexander Kanavin</name>
<email>alex.kanavin@gmail.com</email>
</author>
<published>2021-11-17T15:35:13+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=b3ac015389173471e4d3e1e1841e99175f780d63'/>
<id>urn:sha1:b3ac015389173471e4d3e1e1841e99175f780d63</id>
<content type='text'>
(From OE-Core rev: c613ca14c35a5d1782c79a25b83875cbfa2b952b)

Signed-off-by: Alexander Kanavin &lt;alex@linutronix.de&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: fix CVE-2021-3927 and CVE-2021-3928</title>
<updated>2021-11-16T22:20:33+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross@burtonini.com</email>
</author>
<published>2021-11-15T12:53:28+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=bbe0130c5c2099d81741dd12ec814bbc3d61e05d'/>
<id>urn:sha1:bbe0130c5c2099d81741dd12ec814bbc3d61e05d</id>
<content type='text'>
(From OE-Core rev: 2001631e7a6edb7adc40ee4357466cc54472db71)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: add patch number to CVE-2021-3778 patch</title>
<updated>2021-11-10T19:27:28+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross@burtonini.com</email>
</author>
<published>2021-11-10T10:26:27+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=974df2f61c9c7fbdb79f825f1b8d70299b72fa2c'/>
<id>urn:sha1:974df2f61c9c7fbdb79f825f1b8d70299b72fa2c</id>
<content type='text'>
(From OE-Core rev: 222be29051a3543ac63a0eb07019e90d44429b16)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: fix CVE-2021-3796, CVE-2021-3872, and CVE-2021-3875</title>
<updated>2021-11-10T19:27:28+00:00</updated>
<author>
<name>Ross Burton</name>
<email>ross@burtonini.com</email>
</author>
<published>2021-11-09T23:13:07+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=ce534e8e16f0d880aeae6477e57d1b7b86833a35'/>
<id>urn:sha1:ce534e8e16f0d880aeae6477e57d1b7b86833a35</id>
<content type='text'>
Backport patches from upstream to fix these CVEs.

(From OE-Core rev: b493eb4f9a6bb75a2f01a53b6c70762845bf79f9)

Signed-off-by: Ross Burton &lt;ross.burton@arm.com&gt;
Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
<entry>
<title>vim: fix CVE-2021-3778</title>
<updated>2021-09-29T20:47:46+00:00</updated>
<author>
<name>Minjae Kim</name>
<email>flowergom@gmail.com</email>
</author>
<published>2021-09-27T10:44:30+00:00</published>
<link rel='alternate' type='text/html' href='https://git.enea.com/cgit/linux/poky.git/commit/?id=59a0f26b8a5e592aa0c8e5957ed2ea6142983e87'/>
<id>urn:sha1:59a0f26b8a5e592aa0c8e5957ed2ea6142983e87</id>
<content type='text'>
vim is vulnerable to Heap-based Buffer Overflow

reference:
https://github.com/vim/vim/commit/65b605665997fad54ef39a93199e305af2fe4d7f
(From OE-Core rev: 494929c4cec21712884e13172c37efad7c908411)

(From OE-Core rev: d7fac573f1e1c9cd93181bce60df5666f5b5b03f)

Signed-off-by: Richard Purdie &lt;richard.purdie@linuxfoundation.org&gt;
</content>
</entry>
</feed>
