Msrc Cm1 Vim 8.1.1667-1 On Cbl Mariner 1.0 vulnerabilities

CVE-2019-20807 [MEDIUM] CWE-78 In Vim before 8.1.0881 users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g. Python Ruby or Lua). In Vim before 8.1.0881 users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g. Python Ruby or Lua). FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the

CVE-2019-20079 [HIGH] CWE-416 The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory. The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versio