thac0/vim
1
0
Fork 0
forked from aniani/vim
Code Activity
18,601 Commits 1 Branch 1,905 Tags
b2a4c110a5d13bc794f4eddb2e88a4e8fe9dfbea
Commit Graph

17 Commits

Author SHA1 Message Date
Christian Brabandt
9198c1f2b1 patch 9.0.2068: [security] overflow in :history 
Problem:  [security] overflow in :history
Solution: Check that value fits into int

The get_list_range() function, used to parse numbers for the :history
and :clist command internally uses long variables to store the numbers.
However function arguments are integer pointers, which can then
overflow.

Check that the return value from the vim_str2nr() function is not larger
than INT_MAX and if yes, bail out with an error. I guess nobody uses a
cmdline/clist history that needs so many entries... (famous last words).

It is only a moderate vulnerability, so impact should be low.

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-q22m-h7m2-9mgm

Signed-off-by: Christian Brabandt <cb@256bit.org>
 2023-10-26 21:29:32 +02:00
Yegappan Lakshmanan
465de3a57b patch 9.0.1098: code uses too much indent 
Problem:    Code uses too much indent.
Solution:   Use an early return. (Yegappan Lakshmanan, closes #11747)
 2022-12-26 12:50:04 +00:00
Bram Moolenaar
b298fe6cba patch 9.0.0878: Coverity warns for dead code 
Problem:    Coverity warns for dead code.
Solution:   Remove the dead code.
 2022-11-14 14:36:41 +00:00
Yegappan Lakshmanan
623e94e138 patch 9.0.0872: code is indented more than needed 
Problem:    Code is indented more than needed.
Solution:   Return early. (Yegappan Lakshmanan, closes #11538)
 2022-11-13 18:11:17 +00:00
Bram Moolenaar
5ff595d9db patch 9.0.0284: using static buffer for multiple completion functions 
Problem:    Using static buffer for multiple completion functions.
Solution:   Use one buffer in expand_T.
 2022-08-26 22:36:41 +01:00
Dominique Pelle
748b308eeb patch 8.2.4038: various code not used when features are disabled 
Problem:    Various code not used when features are disabled.
Solution:   Add #ifdefs. (Dominique Pellé, closes #9491)
 2022-01-08 12:41:16 +00:00
Bram Moolenaar
74409f6279 patch 8.2.3970: error messages are spread out 
Problem:    Error messages are spread out.
Solution:   Move more errors to errors.h.
 2022-01-01 15:58:22 +00:00
Yegappan Lakshmanan
4490ec4e83 patch 8.2.3229: Vim9: runtime and compile time type checks are not the same 
Problem:    Vim9: runtime and compile time type checks are not the same.
Solution:   Add more runtime type checks for builtin functions. (Yegappan
            Lakshmanan, closes #8646)
 2021-07-27 22:00:44 +02:00
Yegappan Lakshmanan
0ad871dc4d patch 8.2.3206: Vim9: argument types are not checked at compile time 
Problem:    Vim9: argument types are not checked at compile time.
Solution:   Add several more type checks. (Yegappan Lakshmanan, closes #8611)
 2021-07-23 20:37:56 +02:00
Yegappan Lakshmanan
83494b4ac6 patch 8.2.3188: Vim9: argument types are not checked at compile time 
Problem:    Vim9: argument types are not checked at compile time.
Solution:   Add several more type checks, also at runtime. (Yegappan
            Lakshmanan, closes #8587)
 2021-07-20 17:51:51 +02:00
Yegappan Lakshmanan
1a71d31bf3 patch 8.2.3162: Vim9: argument types are not checked at compile time 
Problem:    Vim9: argument types are not checked at compile time.
Solution:   Add more type checks. (Yegappan Lakshmanan, closes #8560)
 2021-07-15 12:49:58 +02:00
K.Takata
eeec254878 patch 8.2.2922: computing array length is done in various ways 
Problem:    Computing array length is done in various ways.
Solution:   Use ARRAY_LENGTH everywhere. (Ken Takata, closes #8305)
 2021-06-02 13:28:16 +02:00
Bram Moolenaar
e100440158 patch 8.2.1898: command modifier parsing always uses global cmdmod 
Problem:    Command modifier parsing always uses global cmdmod.
Solution:   Pass in cmdmod_T to use.  Rename struct fields consistently.
 2020-10-24 20:49:43 +02:00
Bram Moolenaar
2d06bfde29 patch 8.2.1281: the "trailing characters" error can be hard to understand 
Problem:    The "trailing characters" error can be hard to understand.
Solution:   Add the trailing characters to the message.
 2020-07-23 17:16:18 +02:00
Bram Moolenaar
8d588ccee5 patch 8.2.0316: ex_getln.c code has insufficient test coverage 
Problem:    ex_getln.c code has insufficient test coverage.
Solution:   Add more tests. Fix a problem. (Yegappan Lakshmanan, closes #5693)
 2020-02-25 21:47:45 +01:00
Bram Moolenaar
0a52df50a0 patch 8.1.1887: the +cmdline_compl feature is not in the tiny version 
Problem:    The +cmdline_compl feature is not in the tiny version.
Solution:   Graduate the +cmdline_compl feature.
 2019-08-18 22:26:31 +02:00
Bram Moolenaar
d7663c22c6 patch 8.1.1823: command line history code is spread out 
Problem:    Command line history code is spread out.
Solution:   Put the code in a new file. (Yegappan Lakshmanan, closes #4779)
            Also graduate the +cmdline_hist feature.
 2019-08-06 21:59:57 +02:00