Title

vim Security Update (Cat II impact)

Discussion

Vim (Vi IMproved) is an updated and improved version of the vi editor. Security Fix(es): * A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim. (CVE-2016-1248) Issue Date: 2016-12-21

Check Content

Run the following commands to determine if vim is installed: # rpm -qi vim # rpm -qi vim-X11 # rpm -qi vim-common # rpm -qi vim-enhanced # rpm -qi vim-filesystem # rpm -qi vim-minimal If any of the above packages are installed, check the Version/Release and Key ID. If the Version/Release is earlier than 7.4.629-5.el6_8.1 and the Key ID is 199e2f91fd431d51, this is a finding.

Fix Text

Upgrade VIM to a version greater than 7.4.629-5.el6_8.1

Additional Identifiers

Rule ID:

Vulnerability ID: CVE-2016-1248

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.