Package "vim"
| Name: |
vim
|
Description: |
Vi IMproved - enhanced vi editor
|
| Latest version: |
2:9.1.0967-1ubuntu6.7 |
| Release: |
questing (25.10) |
| Level: |
security |
| Repository: |
main |
| Homepage: |
https://www.vim.org/ |
Links
Download "vim"
Other versions of "vim" in Questing
Packages in group
Deleted packages are displayed in grey.
Changelog
|
vim (2:9.1.0967-1ubuntu6.7) questing-security; urgency=medium
* SECURITY UPDATE: Code injection via NetrwBookHistSave().
- debian/patches/CVE-2026-47162.patch: Properly quote the directory name
in runtime/autoload/netrw.vim.
- CVE-2026-47162
* SECURITY UPDATE: Code Injection in cucumber filetype plugin.
- debian/patches/CVE-2026-47167.patch: Use rubys Regexp.new() in
runtime/ftplugin/cucumber.vim.
- CVE-2026-47167
* SECURITY UPDATE: Code execution with python3complete.
- debian/patches/CVE-2026-52858.patch: Disable execution of import/from
statements in runtime/autoload/python3complete.vim and
../pythoncomplete.vim
- debian/patches/CVE-2026-52860.patch: Strip default expressions and
annotations in runtime/autoload/python3complete.vim and
../pythoncomplete.vim
- CVE-2026-52858
- CVE-2026-52860
* SECURITY UPDATE: Out-of-bounds read in update_snapshot().
- debian/patches/CVE-2026-52859.patch: Bound loop in handle_pushline() in
src/terminal.c.
- CVE-2026-52859
-- Kyle Kernick <email address hidden> Mon, 15 Jun 2026 11:05:33 -0600
|
| Source diff to previous version |
| CVE-2026-47162 |
Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() |
| CVE-2026-47167 |
Vim is an open source, command line text editor. Prior to version 9.2.0496, a code injection vulnerability exists in s:stepmatch() in the cucumber fi |
| CVE-2026-52858 |
Vim is an open source, command line text editor. Prior to version 9.2.0561, the Python omni-completion script in python3complete.vim for Vim with the |
| CVE-2026-52860 |
Vim is an open source, command line text editor. Prior to version 9.2.0597, Vim's Python omni-completion executes reconstructed function and class de |
| CVE-2026-52859 |
Vim is an open source, command line text editor. Prior to version 9.2.0565, the update_snapshot() function in src/terminal.c copies the visible termi |
|
|
vim (2:9.1.0967-1ubuntu6.6) questing-security; urgency=medium
* SECURITY UPDATE: Command injection in tar plugin.
- debian/patches/CVE-2026-46483.patch: Use the correct shell-escape in
runtime/autoload/tar.vim.
- CVE-2026-46483
* SECURITY UPDATE: Code injection via mf command.
- debian/patches/CVE-2026-43961.patch: Avoid string concatenation for
filter commands in runtime/autoload/netrw.vim.
- CVE-2026-43961
-- Kyle Kernick <email address hidden> Tue, 02 Jun 2026 15:57:58 -0600
|
| Source diff to previous version |
| CVE-2026-46483 |
Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar() in runtime/autoload/ta |
|
|
vim (2:9.1.0967-1ubuntu6.5) questing-security; urgency=medium
* SECURITY UPDATE: Command injection in netrw plugin.
- debian/patches/CVE-2026-42307.patch: Escape file names and harden regex
patterns in runtime/autoload/netrw.vim
- CVE-2026-42307
* SECURITY UPDATE: Shell execution in completion.
- debian/patches/CVE-2026-44656.patch: Skip path entries containing
backticks and add P_SECURE option in src/findfile.c and src/optiondefs.h
- CVE-2026-44656
* SECURITY UPDATE: Heap overflow in spellfile.
- debian/patches/CVE-2026-45130.patch: Enforce a maximum compound length
in src/spellfile.c
- CVE-2026-45130
-- Kyle Kernick <email address hidden> Wed, 20 May 2026 14:33:03 -0600
|
| Source diff to previous version |
| CVE-2026-42307 |
Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin |
| CVE-2026-44656 |
Vim is an open source, command line text editor. Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's :find command-line |
| CVE-2026-45130 |
Vim is an open source, command line text editor. Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when |
|
|
vim (2:9.1.0967-1ubuntu6.4) questing-security; urgency=medium
* SECURITY UPDATE: Command injection via backtick expansion in tag files
- debian/patches/CVE-2026-41411.patch: Disallow backticks before attempting
to expand filenames
- CVE-2026-41411
-- Federico Quattrin <email address hidden> Tue, 05 May 2026 06:12:13 -0300
|
| Source diff to previous version |
| CVE-2026-41411 |
Vim is an open source, command line text editor. Prior to 9.2.0357, A command injection vulnerability exists in Vim's tag file processing. When resol |
|
|
vim (2:9.1.0967-1ubuntu6.3) questing-security; urgency=medium
* SECURITY UPDATE: Path Traversal in zip.vim
- debian/patches/CVE-2026-35177.patch: Detect malicious zip files before
writing in runtime/autoload/zip.vim
- CVE-2026-35177
* SECURITY UPDATE: Command Injection in netbeans
- debian/patches/CVE-2026-39881.patch: Validate typename, fg, and bg
before passing to coloncmd in src/netbeans.c
- CVE-2026-39881
-- Kyle Kernick <email address hidden> Tue, 21 Apr 2026 13:38:35 -0600
|
| CVE-2026-35177 |
Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows overwriting of arbitrary f |
| CVE-2026-39881 |
Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious |
|
About
-
Send Feedback to @ubuntu_updates
