[VIM] Spelling mistake (offesive :) )

security curmudgeon jericho at attrition.org
Sun Apr 6 06:09:16 UTC 2008

: In http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1358 you can find: 
: "Sack-based buffer overflow in the IMAP server in Alt-N Technologies 
: MDaemon 9.6.4 allows remote authenticated users to execute arbitrary 
: code via a FETCH command with a long BODY."
: It was problem meant to be stack :) instead its sack :)
: Not sure who to contact to get this fixed.

The fastest way to report and get spelling errors fixed for this, is to 
mail Steve Christey / CVE directly. Since NVD pulls their data from CVE, 
the changes need to originate there. Steve also prioritizes mails like 
that and makes the fast changes very quickly.

Failing that, he obviously reads VIM as well. =)

More information about the VIM mailing list