5 matches found
CLSA-2026-1777446368 vim: Fix of CVE-2026-33412
CVE-2026-33412: fix command injection via newline character in glob on Unix-like systems by escaping '\n' in SHELLSPECIAL...
SUSE-SU-2026:21118-1 Security update for vim
This update for vim fixes the following issues: - Update to 9.2.0280 - CVE-2026-33412: command injection via newline in glob bsc1259985. - CVE-2026-34714: crafted file can allow code execution bsc1261191. - CVE-2026-34982: Vim modeline bypass via various options bsc1261271...
Mageia: Security Advisory (MGASA-2026-0062)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2026-33412 Vim affected by Command injection via newline in glob()
Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vim's glob function on Unix-like systems. By including a newline character \n in a pattern passed to glob, an attacker may be able to execute arbitrary shell commands. This...
PT-2026-26509
Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.2.0202 Description Vim, a command line text editor, contains a flaw in its glob function on Unix-like systems. Including a newline character within a pattern provided to glob could allow an attacker to execute arbitrary...