-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 16 Jun 2019 13:06:40 -0400
Source: vim
Binary: vim-common vim-gui-common vim-runtime vim-doc vim-tiny vim vim-gtk vim-gtk3 vim-nox vim-athena vim-gnome xxd
Architecture: i386
Version: 2:8.0.0197-4+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: amd64 / i386 Build Daemon (x86-csail-01) <buildd_amd64-x86-csail-01@buildd.debian.org>
Changed-By: James McCoy <jamessan@debian.org>
Description:
 vim        - Vi IMproved - enhanced vi editor
 vim-athena - Vi IMproved - enhanced vi editor - with Athena GUI
 vim-common - Vi IMproved - Common files
 vim-doc    - Vi IMproved - HTML documentation
 vim-gnome  - Vi IMproved - enhanced vi editor (dummy package)
 vim-gtk    - Vi IMproved - enhanced vi editor - with GTK2 GUI
 vim-gtk3   - Vi IMproved - enhanced vi editor - with GTK3 GUI
 vim-gui-common - Vi IMproved - Common GUI files
 vim-nox    - Vi IMproved - enhanced vi editor - with scripting languages suppo
 vim-runtime - Vi IMproved - Runtime files
 vim-tiny   - Vi IMproved - enhanced vi editor - compact version
 xxd        - tool to make (or reverse) a hex dump
Closes: 930020
Changes:
 vim (2:8.0.0197-4+deb9u2) stretch-security; urgency=high
 .
   * Backport patches to address CVE-2019-12735 (Closes: #930020)
     + 8.0.0649: when opening a help file the filetype is set several times
     + 8.0.0651: build failure without the auto command feature
     + 8.1.0066: nasty autocommand causes using freed memory
     + 8.1.0177: defining function in sandbox is inconsistent
     + 8.1.0189: function defined in sandbox not tested
     + 8.1.0205: invalid memory access with invalid modeline
     + 8.1.0206: duplicate test function name
     + 8.1.0208: file left behind after running individual test
     + 8.1.0506: modelinen test fails when run by root
     + 8.1.0538: evaluating a modeline might invoke using a shell command
     + 8.1.0539: cannot build without the sandbox
     + 8.1.0540: may evaluate insecure value when appending to option
     + 8.1.0544: setting 'filetype' in a modeline causes an error
     + 8.1.0546: modeline test with keymap fails
     + 8.1.0547: modeline test with keymap still fails
     + 8.1.0613: when executing an insecure function the secure flag is stuck
     + 8.1.1046: the "secure" variable is used inconsistently
     + 8.1.1365: source command doesn't check for the sandbox
     + 8.1.1366: using expressions in a modeline is unsafe
     + 8.1.1367: can set 'modelineexpr' in modeline
     + 8.1.1368: modeline test fails with python but without pythonhome
     + 8.1.1382: error when editing test files
     + 8.1.1401: misspelled mkspellmem and makespellmem
   * gbp.conf: Set debian-branch to debian/stretch
   * gbp.conf: Set upstream-tag to v%(version)s
Checksums-Sha1:
 db67de5b884ffccd84f62affdfe0cbb6d823a36c 3492270 vim-athena-dbgsym_8.0.0197-4+deb9u2_i386.deb
 7687febf040a9c82559fa12f285fdd84c7894d8d 1312070 vim-athena_8.0.0197-4+deb9u2_i386.deb
 4ee4fea265483f47fefd3a8a5119c27b4dddf3eb 2671428 vim-dbgsym_8.0.0197-4+deb9u2_i386.deb
 0be5f2f837e9d7f4e94d7728800e4f2cfae0669d 3833186 vim-gtk-dbgsym_8.0.0197-4+deb9u2_i386.deb
 8e1f72345b3136b51dcb04869483795c4681ec80 3660944 vim-gtk3-dbgsym_8.0.0197-4+deb9u2_i386.deb
 e9e37445444b8b4b675f508f7965d9cc8125f19d 1328630 vim-gtk3_8.0.0197-4+deb9u2_i386.deb
 f8996a55189379120b427ccd0c417473fda72346 1327386 vim-gtk_8.0.0197-4+deb9u2_i386.deb
 e0901a99eae13200c739a064ac4f9147c94d2d4d 2959576 vim-nox-dbgsym_8.0.0197-4+deb9u2_i386.deb
 8805a102864552f59579a22414681b4239ceabe4 1201358 vim-nox_8.0.0197-4+deb9u2_i386.deb
 5482d314776ca99588d9d5d5c12c79e0fc03983e 1033272 vim-tiny-dbgsym_8.0.0197-4+deb9u2_i386.deb
 e89926fadb4db992b8e07bf8a58c905e3b69e1ab 462582 vim-tiny_8.0.0197-4+deb9u2_i386.deb
 7a2239bd74650c07dd3b5072355c558d0640f9fd 17864 vim_8.0.0197-4+deb9u2_i386.buildinfo
 80b6a9c7891d1ad83bd1a793c95d7f34bac5de0b 1090328 vim_8.0.0197-4+deb9u2_i386.deb
 9fb343b01854a0c6f505e5fa25676bcbf9e2704a 9536 xxd-dbgsym_8.0.0197-4+deb9u2_i386.deb
 cb67bd73a36da8952569f5b2a5c7943614de568e 131918 xxd_8.0.0197-4+deb9u2_i386.deb
Checksums-Sha256:
 8ea4c94cbeece4412f445e426c6c1b359956374e51d8e3f9548bf1cd39564c53 3492270 vim-athena-dbgsym_8.0.0197-4+deb9u2_i386.deb
 edab55780d775a3b0628913c2921993b5f0bfc980bc5ec7425d510f9318eae56 1312070 vim-athena_8.0.0197-4+deb9u2_i386.deb
 79a3b28b1a379702c3b77e8fc4a6164687ea6f302fc38dd3d3723e950d2a6b1f 2671428 vim-dbgsym_8.0.0197-4+deb9u2_i386.deb
 b5c191fd526361c565ef10246b6265fadd995838fa8781dea83f93f66dde7214 3833186 vim-gtk-dbgsym_8.0.0197-4+deb9u2_i386.deb
 9bd07fd791d6d1378442e293014d1046724c08c4811e17787da39ed981fb627f 3660944 vim-gtk3-dbgsym_8.0.0197-4+deb9u2_i386.deb
 0279e576f1097b4e7811c78cd0df372e5186d85d9317c0f6dacb2e9a91481d53 1328630 vim-gtk3_8.0.0197-4+deb9u2_i386.deb
 7fbe1d4a8c9d68560da9e1c8793781bb6689417721cb2c8ead970a0900f95d05 1327386 vim-gtk_8.0.0197-4+deb9u2_i386.deb
 1aafe310a6596929b5fd45880b30e73b86ba992c0e93a6cf1aa0349144921f94 2959576 vim-nox-dbgsym_8.0.0197-4+deb9u2_i386.deb
 fd47df229eb708e53fdcc02e1da6cd9f7c39e1f57632f2791559d370bce4b294 1201358 vim-nox_8.0.0197-4+deb9u2_i386.deb
 abd1b26783510812b998b70b0e0d0fb49e3cb0542ebd410ce24594ea442dbd0d 1033272 vim-tiny-dbgsym_8.0.0197-4+deb9u2_i386.deb
 7afb9bda28d785c4eca080d61910c7826995db9ea9f1a268ada1458808383fed 462582 vim-tiny_8.0.0197-4+deb9u2_i386.deb
 89be10fc196cade416e544a6b3cb4881292fd85bb9af05d20927b321e775b919 17864 vim_8.0.0197-4+deb9u2_i386.buildinfo
 b7e5322125c8355b78b91d23c8808e5136694ad11cd5059891b265b81b6da936 1090328 vim_8.0.0197-4+deb9u2_i386.deb
 93953efe94166cf64867011e719a915e57d3de2945c84004ed056f7fa4bde09c 9536 xxd-dbgsym_8.0.0197-4+deb9u2_i386.deb
 92bfe12ff31d2bee6d559ab6742038998f472e3489b72f1b96d9357b122d6210 131918 xxd_8.0.0197-4+deb9u2_i386.deb
Files:
 a6c7b79d8daa2b092c1d3e353cda1d4f 3492270 debug extra vim-athena-dbgsym_8.0.0197-4+deb9u2_i386.deb
 011723bae64948e7caf6cc0bcbefb709 1312070 editors extra vim-athena_8.0.0197-4+deb9u2_i386.deb
 e018f5ea63dbed6405a5e8db14005ab7 2671428 debug extra vim-dbgsym_8.0.0197-4+deb9u2_i386.deb
 cab5d88fb596f62bd988fbf6b4fa313d 3833186 debug extra vim-gtk-dbgsym_8.0.0197-4+deb9u2_i386.deb
 921f253371db0ad65e6fab0ea00d86a6 3660944 debug extra vim-gtk3-dbgsym_8.0.0197-4+deb9u2_i386.deb
 1c250801c016092c4532fc80d177390a 1328630 editors extra vim-gtk3_8.0.0197-4+deb9u2_i386.deb
 f15d08f9215c87e7ba33b000f38d7c33 1327386 editors extra vim-gtk_8.0.0197-4+deb9u2_i386.deb
 619776b7b8d8ea952f9defe8472c3e21 2959576 debug extra vim-nox-dbgsym_8.0.0197-4+deb9u2_i386.deb
 39f662defb31ad956edc44f684cbc27a 1201358 editors extra vim-nox_8.0.0197-4+deb9u2_i386.deb
 882013ced331c514d5c0ee3bf2bc4da2 1033272 debug extra vim-tiny-dbgsym_8.0.0197-4+deb9u2_i386.deb
 6eb584f85de430f2970571778517e8a6 462582 editors important vim-tiny_8.0.0197-4+deb9u2_i386.deb
 aeff8b6592cd1d25e0247b99e6099c5a 17864 editors optional vim_8.0.0197-4+deb9u2_i386.buildinfo
 c94b648afe386c29adad70be4ec85a9e 1090328 editors optional vim_8.0.0197-4+deb9u2_i386.deb
 06db93ca554fcfc4fe8dad146e05251d 9536 debug extra xxd-dbgsym_8.0.0197-4+deb9u2_i386.deb
 cfcc9a3f3bd386104624386afc357f4f 131918 editors extra xxd_8.0.0197-4+deb9u2_i386.deb

-----BEGIN PGP SIGNATURE-----
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=7Cgl
-----END PGP SIGNATURE-----