summaryrefslogtreecommitdiffstats
path: root/debian/patches/CVE-2022-3099.patch
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--debian/patches/CVE-2022-3099.patch23
1 files changed, 23 insertions, 0 deletions
diff --git a/debian/patches/CVE-2022-3099.patch b/debian/patches/CVE-2022-3099.patch
new file mode 100644
index 0000000..1dd5203
--- /dev/null
+++ b/debian/patches/CVE-2022-3099.patch
@@ -0,0 +1,23 @@
+From: Markus Koschany <apo@debian.org>
+Date: Mon, 7 Nov 2022 00:03:56 +0100
+Subject: CVE-2022-3099
+
+Origin: https://github.com/vim/vim/commit/35d21c6830fc2d68aca838424a0e786821c5891c
+---
+ src/ex_docmd.c | 2 +-
+ src/testdir/test_eval_stuff.vim | 14 ++++++++++++++
+ 2 files changed, 15 insertions(+), 1 deletion(-)
+
+diff --git a/src/ex_docmd.c b/src/ex_docmd.c
+index bb8d719..5321962 100644
+--- a/src/ex_docmd.c
++++ b/src/ex_docmd.c
+@@ -1109,7 +1109,7 @@ do_cmdline(
+
+ /* Check for the next breakpoint at or after the ":while"
+ * or ":for". */
+- if (breakpoint != NULL)
++ if (breakpoint != NULL && lines_ga.ga_len > current_line)
+ {
+ *breakpoint = dbg_find_breakpoint(
+ getline_equal(fgetline, cookie, getsourceline),