Home » Tag Archives: Neovim

Tag Archives: Neovim

Vulnerability in Vim and Neovim editors leads to code execution while opening a malicious file

Linux under attack

In text editors Vim and Neovim was found a vulnerability (CVE-2019-12735), which allows to execute arbitrary code while opening a specially designed file. The problem manifests itself with the activity of the modeline enabled by default (“: set modeline“), which allows defining editing options in the file being processed. Vulnerability eliminated in Vim 8.1.1365 and Neovim 0.3.6 releases. Through modeline, …

Read More »