Package "vim"

Name:	vim
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: Vi IMproved - enhanced vi editor (dummy package) Vi IMproved - enhanced vi editor - with GTK3 GUI Vi IMproved - Common GUI files Vi IMproved - enhanced vi editor - with Motif GUI
Latest version:	2:9.1.0967-1ubuntu4.1
Release:	plucky (25.04)
Level:	security
Repository:	universe

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "vim" in Plucky

Repository	Area	Version
base	main	2:9.1.0967-1ubuntu4
base	universe	2:9.1.0967-1ubuntu4
security	main	2:9.1.0967-1ubuntu4.1

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2:9.1.0967-1ubuntu4.1 2025-09-15 16:07:51 UTC

vim (2:9.1.0967-1ubuntu4.1) plucky-security; urgency=medium * SECURITY UPDATE: Path traversal when opening specially crafted tar/zip archives. - debian/patches/CVE-2025-53905.patch: Replace "echohl Error" with call, remove leading slashes from name, replace tar_secure with g:tar_secure in runtime/autoload/tar.vim. - debian/patches/CVE-2025-53906.patch: Add need_rename, replace w! with w, call warning for path traversal attack, and escape leading "../" in runtime/autoload/zip.vim. - CVE-2025-53905 - CVE-2025-53906 -- Hlib Korzhynskyy <email address hidden> Wed, 27 Aug 2025 17:17:04 -0230

CVE-2025-53905	Vim is an open source, command line text editor. Prior to version 9.1.1552, a path traversal issue in Vim’s tar.vim plugin can allow overwriting of a
CVE-2025-53906	Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin can allow overwriting of a

About - Send Feedback to @ubuntu_updates

Package "vim"

Links

Other versions of "vim" in Plucky

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

security

PPA updates