dbg111-gvim openSUSE 11.1 The VI Improved editor (vim) was updated to version 7.2.108 to fix various security problems and other bugs. CVE-2008-4677: The netrw plugin sent credentials to all servers. CVE-2009-0316: The python support used a search path including the current directory, allowing code injection when python code was used. CVE-2008-2712: Arbitrary code execution in vim helper plugins filetype.vim, zipplugin, xpm.vim, gzip_vim, and netrw were fixed. CVE-2008-3074: tarplugin code injection CVE-2008-3075: zipplugin code injection CVE-2008-3076: several netrw bugs, code injection CVE-2008-6235: code injection in the netrw plugin CVE-2008-4677: credential disclosure by netrw plugin vim-debuginfo-7.2-7.4.1.i586.rpm vim-debuginfo-7.2-7.4.1.ppc.rpm vim-debuginfo-7.2-7.4.1.x86_64.rpm vim-debugsource-7.2-7.4.1.i586.rpm vim-debugsource-7.2-7.4.1.ppc.rpm vim-debugsource-7.2-7.4.1.x86_64.rpm