CLSA-2026-1779356468 vim: Fix of 2 CVEs

CVE-2022-2343: heap-buffer-overflow in inscompladdinfercase on long line with 'infercase' upstream vim 9.0.0045 - CVE-2022-3296: stack underflow in exfinally / exendtry when :finally lacks an enclosing :try upstream vim 9.0.0577...

Astra Linux - уязвимость в vim

Heap-based Buffer Overflow in the GitHub repository vim/vim before version 9.0.1225...

CLSA-2026-1779130441 vim: Fix of 3 CVEs

CVE-2022-0261: fix heap-based buffer overflow in blockinsert in src/ops.c - CVE-2022-0318: fix heap-based buffer overflow in utfheadoff in mbyte.c - CVE-2022-3520: clamp bopend.col = 0 in doput to prevent Visual block put underflow...

CLSA-2026-1779129979 vim: Fix of 3 CVEs

CVE-2022-0261: fix heap-based buffer overflow in blockinsert in src/ops.c - CVE-2022-0318: fix heap-based buffer overflow in utfheadoff in mbyte.c - CVE-2022-3520: clamp bopend.col = 0 in doput to prevent Visual block put underflow...

vim security update

8.2.2637-23.0.1.el97.3 - Remove upstream references Orabug: 31197557 2:8.2.2637-23.3 - Resolves: RHEL-164965 vim: arbitrary command execution via modeline sandbox bypass 2:8.2.2637-23.2 - RHEL-155437 CVE-2026-28417 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin -...

vim security update

9.1.083-6.0.1.el101.3 - Remove upstream references Orabug: 31197557 2:9.1.083-6.3 - RHEL-159615 CVE-2026-33412 vim: Vim: Arbitrary code execution via command injection in glob function 2:9.1.083-6.2 - RHEL-155409 CVE-2026-28421 vim: Vim: Denial of service and information disclosure via crafted sw...

Oracle Linux 9 : vim (ELSA-2026-5602)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5602 advisory. 8.2.2637-23.0.1.el97.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-23.1 - RHEL-147940 CVE-2026-25749 vim: Heap Overflow in Vim Tenable has extracte...

Advisory ROSA-SA-2026-3249

software: vim 9.1.2148 WASP: ROSA-CHROME unaffected versions = vim-9.1.2148-1 affected versions vim-9.1.2148-1 CVE-ID: CVE-2026-25749 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: Heap overflow in Vim before version 9.1.2132 when processing the 'helpfile' option. In gettagfname src/tag.c, the value of...

CVE-2026-28418 Vim has Heap-based Buffer Overflow in Emacs tags parsing

Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundar...

CVE-2026-28418

Vim (before 9.2.0074) is affected by a heap-based buffer overflow in the Emacs-style tags file parser. When processing a malformed tags file, Vim can read up to 7 bytes beyond the allocated memory boundary due to out-of-bounds reads. The issue is fixed in Vim version 9.2.0074. No exploitation det...

CentOS 9 : vim-8.2.2637-25.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the vim-8.2.2637-25.el9 build changelog. - Heap Overflow in Vim CVE-2026-25749 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...

SUSE CVE-2026-25749

Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when processing the 'helpfile' option. The vulnerability is located in the gettagfname function in src/tag.c. When processing help file tags,...

Linux Distros Unpatched Vulnerability : CVE-2026-25749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when...

CVE-2026-25749

Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when processing the 'helpfile' option. The vulnerability is located in the gettagfname function in src/tag.c. When processing help file tags,...

TencentOS Server 3: vim (TSSA-2022:0126)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0126 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

DEBIAN-CVE-2023-4781

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873...

UBUNTU-CVE-2023-4781

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873...

SUSE CVE-2021-4019

vim is vulnerable to Heap-based Buffer Overflow...

SUSE CVE-2022-0261

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2...

SUSE CVE-2022-1621

Heap buffer overflow in vimstrncpy findword in GitHub repository vim/vim prior to 8.2.4919. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution...