Fixes path traversal problem in zip/tar plugins; archives with ../ paths
can result in possibly-unexpected file writes. The victim must edit such
a file using Vim which will reveal the filename and the file content.
package while there. the byte saving in the default install isn't worth
the extra hassle at update time (which is already tricky due to evim,
gvim and friends which are only in the gui installs).
pvk@ sent me a diff to fix some issues with missing dir creations due
to badly placed files, but I thought I'd go with this approach instead.
updates handled with @conflict @pkgpath as needed (relying on the old
packages which had @pkgpath ${BASE_PKGPATH} that means they match nicely
with the default new pkgpaths, avoiding the need for messy flavour
handling).
For the xxd tool, when outputting colored hexdumps using the -R command
line flag, together with -g1 (group every byte), -c 256 (format 256
octets per line), -d (show offsets in decimal) and -o <large_numer> (add
offset to the file position), the buffer used to write to may overflow.
this includes new colour schemes. they aim to be more consistent in
different environments (e.g. between text and gui versions), but
in some cases significantly change what people are familiar with.
a copy of the old colour schemes is installed under the "legacy"
directory to make it easier to revert if desired. you can either use
them directly in config, or (probably better if you share config
files between machines) copy the relevant files from
/usr/local/share/vim/vim82/colors/legacy to ~/.vim/colors
which take priority.
for more information, see
https://github.com/vim/colorschemeshttps://github.com/vim/vim/issues/10449#issuecomment-1140195027=
which have big changes in particular to background colours - various themes went
from "no" background colour (i.e. dark on a dark terminal) to setting a light
background.
diff-wrangling for the "backout SIGTSTP changes" diff (re
https://github.com/vim/vim/pull/9422) because other changes have been
made to the upstream code (it's still broken)
sthen