Bug 1398227 (CVE-2016-1248)
| Summary: | CVE-2016-1248 vim: Lack of validation of values for few options results in code exection | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Andrej Nemec <anemec> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | anemec, dmoppert, gchamoul, karsten, moshima.web, sardella, slawomir, zdohnal |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | vim 8.0.0056 | Doc Type: | If docs needed, set a value |
| Doc Text: |
A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-12-22 00:43:00 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1398228, 1399008, 1399009, 1399010, 1399011 | ||
| Bug Blocks: | 1398230 | ||
|
Description
Andrej Nemec
2016-11-24 10:15:02 UTC
Created vim tracking bugs for this issue: Affects: fedora-all [bug 1398228] Mitigation: Disabling modeline support in .vimrc by adding "set nomodeline" will prevent exploitation of this flaw. By default, modeline is enabled for ordinary users but disabled for root. This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Red Hat Enterprise Linux 7 Via RHSA-2016:2972 https://rhn.redhat.com/errata/RHSA-2016-2972.html |