Does this version actually fix all of the vulnerabilities? Using the test suite from http://www.rdancer.org/vulnerablevim.html I get the following result:
------------------------------------------- -------- Test results below --------------- ------------------------------------------- filetype.vim strong : EXPLOIT FAILED weak : EXPLOIT FAILED zipplugin : VULNERABLE xpm.vim xpm : VULNERABLE xpm2 : VULNERABLE remote : VULNERABLE gzip_vim : EXPLOIT FAILED netrw : VULNERABLE
Should be noted in the GLSA I guess.
Does this version actually fix all of the vulnerabilities? Using the test suite from http:// www.rdancer. org/vulnerablev im.html I get the following result:
------- ------- ------- ------- ------- ------- - ------- ------- ------- ------- ------- -
-------- Test results below ---------------
-------
filetype.vim
strong : EXPLOIT FAILED
weak : EXPLOIT FAILED
zipplugin : VULNERABLE
xpm.vim
xpm : VULNERABLE
xpm2 : VULNERABLE
remote : VULNERABLE
gzip_vim : EXPLOIT FAILED
netrw : VULNERABLE
Should be noted in the GLSA I guess.