UbuntuUpdates.org

Package "vim"

Name: vim

Description:

Vi IMproved - enhanced vi editor
Latest version: 2:8.2.3995-1ubuntu2.32
Release: jammy (22.04)
Level: security
Repository: main
Homepage: https://www.vim.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "vim"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "vim" in Jammy

Repository Area Version
base main 2:8.2.3995-1ubuntu2
base universe 2:8.2.3995-1ubuntu2
security universe 2:8.2.3995-1ubuntu2.32
updates main 2:8.2.3995-1ubuntu2.32
updates universe 2:8.2.3995-1ubuntu2.32

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2:8.2.3995-1ubuntu2.32 2026-06-18 18:07:32 UTC

  vim (2:8.2.3995-1ubuntu2.32) jammy-security; urgency=medium

  * SECURITY UPDATE: Code injection via NetrwBookHistSave().
    - debian/patches/CVE-2026-47162.patch: Properly quote the directory name
      in runtime/autoload/netrw.vim.
    - CVE-2026-47162
  * SECURITY UPDATE: Code Injection in cucumber filetype plugin.
    - debian/patches/CVE-2026-47167.patch: Use rubys Regexp.new() in
      runtime/ftplugin/cucumber.vim.
    - CVE-2026-47167
  * SECURITY UPDATE: Code execution with python3complete.
    - debian/patches/CVE-2026-52858.patch: Disable execution of import/from
      statements in runtime/autoload/python3complete.vim and
      ../pythoncomplete.vim
    - debian/patches/CVE-2026-52860.patch: Strip default expressions and
      annotations in runtime/autoload/python3complete.vim and
      ../pythoncomplete.vim
    - CVE-2026-52858
    - CVE-2026-52860
  * SECURITY UPDATE: Out-of-bounds read in update_snapshot().
    - debian/patches/CVE-2026-52859.patch: Bound loop in handle_pushline() in
      src/terminal.c.
    - CVE-2026-52859

 -- Kyle Kernick <email address hidden> Mon, 15 Jun 2026 16:18:48 -0600
Source diff to previous version
CVE-2026-47162 Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave()
CVE-2026-47167 Vim is an open source, command line text editor. Prior to version 9.2.0496, a code injection vulnerability exists in s:stepmatch() in the cucumber fi
CVE-2026-52858 Vim is an open source, command line text editor. Prior to version 9.2.0561, the Python omni-completion script in python3complete.vim for Vim with the
CVE-2026-52860 Vim is an open source, command line text editor. Prior to version 9.2.0597, Vim's Python omni-completion executes reconstructed function and class de
CVE-2026-52859 Vim is an open source, command line text editor. Prior to version 9.2.0565, the update_snapshot() function in src/terminal.c copies the visible termi

Version: 2:8.2.3995-1ubuntu2.31 2026-06-09 20:07:27 UTC

  vim (2:8.2.3995-1ubuntu2.31) jammy-security; urgency=medium

  * SECURITY UPDATE: Command injection in tar plugin.
    - debian/patches/CVE-2026-46483.patch: Use the correct shell-escape in
      runtime/autoload/tar.vim.
    - CVE-2026-46483
  * SECURITY UPDATE: Code injection via mf command.
    - debian/patches/CVE-2026-43961.patch: Avoid string concatenation for
      filter commands in runtime/autoload/netrw.vim.
    - CVE-2026-43961

 -- Kyle Kernick <email address hidden> Wed, 03 Jun 2026 10:41:25 -0600
Source diff to previous version
CVE-2026-46483 Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar() in runtime/autoload/ta

Version: 2:8.2.3995-1ubuntu2.30 2026-05-25 19:07:25 UTC

  vim (2:8.2.3995-1ubuntu2.30) jammy-security; urgency=medium

  * SECURITY UPDATE: Command injection in netrw plugin.
    - debian/patches/CVE-2026-42307.patch: Escape file names and harden regex
      patterns in runtime/autoload/netrw.vim
    - CVE-2026-42307
  * SECURITY UPDATE: Shell execution in completion.
    - debian/patches/CVE-2026-44656.patch: Skip path entries containing
      backticks and add P_SECURE option in src/findfile.c and src/optiondefs.h
    - CVE-2026-44656
  * SECURITY UPDATE: Heap overflow in spellfile.
    - debian/patches/CVE-2026-45130.patch: Enforce a maximum compound length
      in src/spellfile.c
    - CVE-2026-45130

 -- Kyle Kernick <email address hidden> Wed, 20 May 2026 15:28:11 -0600
Source diff to previous version
CVE-2026-42307 Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin
CVE-2026-44656 Vim is an open source, command line text editor. Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's :find command-line
CVE-2026-45130 Vim is an open source, command line text editor. Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when

Version: 2:8.2.3995-1ubuntu2.29 2026-05-07 19:07:36 UTC

  vim (2:8.2.3995-1ubuntu2.29) jammy-security; urgency=medium

  * SECURITY UPDATE: Command injection via backtick expansion in tag files
    - debian/patches/CVE-2026-41411.patch: Disallow backticks before attempting
      to expand filenames
    - CVE-2026-41411

 -- Federico Quattrin <email address hidden> Wed, 06 May 2026 13:56:18 -0300
Source diff to previous version
CVE-2026-41411 Vim is an open source, command line text editor. Prior to 9.2.0357, A command injection vulnerability exists in Vim's tag file processing. When resol

Version: 2:8.2.3995-1ubuntu2.28 2026-04-27 21:08:43 UTC

  vim (2:8.2.3995-1ubuntu2.28) jammy-security; urgency=medium

  * SECURITY UPDATE: Command Injection in netbeans
    - debian/patches/CVE-2026-39881.patch: Validate typename, fg, and bg
      before passing to coloncmd in src/netbeans.c
    - CVE-2026-39881

 -- Kyle Kernick <email address hidden> Wed, 22 Apr 2026 12:21:19 -0600
CVE-2026-39881 Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious


About   -   Send Feedback to @ubuntu_updates