Ubuntu
neovim package

Change logs for neovim source package in Eoan

  1. Eoan (19.10)
  2. Change log 
  • neovim (0.3.8-1) unstable; urgency=medium

  * New upstream release
    + Fixes FTBFS with gcc-9 due to stricter handling of compound literal
      lifetimes.  (Closes: #925785)
  * Declare compliance with Policy 4.4.0, no changes required
  * Install alternatives wrapper scripts in /usr/libexec/neovim.  This avoids
    cluttering $PATH and addresses lintian's binary-without-manpage tag.

 -- James McCoy <email address hidden>  Tue, 23 Jul 2019 22:41:01 -0400
  • neovim (0.3.4-3) unstable; urgency=high

  * Backport additional changes to address CVE-2019-12735 (Closes: #930024)
    + vim-patch:8.1.0177: defining function in sandbox is inconsistent
    + vim-patch:8.1.0189: function defined in sandbox not tested
    + vim-patch:8.1.0538: evaluating a modeline might invoke using a shell
      command
    + vim-patch:8.1.0539: cannot build without the sandbox
    + vim-patch:8.1.0540: may evaluate insecure value when appending to option
    + vim-patch:8.1.0544: setting 'filetype' in a modeline causes an error
    + vim-patch:8.1.0613: when executing an insecure function the secure flag
      is stuck
    + vim-patch:8.1.1046: the "secure" variable is used inconsistently
    + vim-patch:8.1.0205: invalid memory access with invalid modeline
    + vim-patch:8.1.0206: duplicate test function name
    + vim-patch:8.1.0506: modeline test fails when run by root
    + vim-patch:8.1.0546: modeline test with keymap fails
    + vim-patch:8.1.0547: modeline test with keymap still fails
    + vim-patch:8.1.1366: using expressions in a modeline is unsafe
    + vim-patch:8.1.1367: can set 'modelineexpr' in modeline
    + vim-patch:8.1.1368: modeline test fails with python but without
      pythonhome
    + vim-patch:8.1.1382: error when editing test file
    + vim-patch:8.1.1401: misspelled mkspellmem as makespellmem
  * Backport patch to prevent use of nvim's API within the sandbox

 -- James McCoy <email address hidden>  Wed, 26 Jun 2019 21:21:33 -0400
  • neovim (0.3.4-2) unstable; urgency=high

  [ Efraim Flashner ]
  * don't use luajit on powerpc

  [ James McCoy ]
  * Use the system allocator instead of jemalloc

  [ Justin M. Keyes ]
  * vim-patch:8.1.1365: :source should check sandbox (Closes: #930024,
    CVE-2019-12735)

 -- James McCoy <email address hidden>  Wed, 05 Jun 2019 21:38:14 -0400
  • neovim (0.3.4-1) unstable; urgency=medium

  * New upstream release
  * Explicitly downgrade _FORTIFY_SOURCE to 1
  * Build-Depend on jemalloc >= 5.1 for archs with varying page size

 -- James McCoy <email address hidden>  Sun, 13 Jan 2019 16:04:16 -0500