[CLSA-2026:1777942724] vim: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2026-05-06 23:12:17 UTC
Description:
- CVE-2021-3928: fix reading uninitialized memory in spell suggestions (spellsuggest.c) - CVE-2022-1616: fix buffer overflow in invalid command with composing chars (ex_docmd.c) - CVE-2022-1620: fix NULL pointer dereference when using invalid pattern (buffer.c)
Updated packages:
  • vim-X11-8.2.2637-22.el9_6.1.tuxcare.els19.x86_64.rpm
    sha:e5b8e6ef32fe0a9a134015348c5ff18dc4dc1261ea08e7c7339213502859354b
  • vim-common-8.2.2637-22.el9_6.1.tuxcare.els19.x86_64.rpm
    sha:a7709080bd7724b36ec66c944fff346bb9ac34b03c169f942111900377d5a78e
  • vim-enhanced-8.2.2637-22.el9_6.1.tuxcare.els19.x86_64.rpm
    sha:bc2cd6cc0b78b65cde4d40544dc7049f820bccaa6ebecb0bc49488b70771bd83
  • vim-filesystem-8.2.2637-22.el9_6.1.tuxcare.els19.noarch.rpm
    sha:ed777892de343d6c5a93c9911ef41d7ab2556e566e8adb7ce8a861f8aa804f19
  • vim-minimal-8.2.2637-22.el9_6.1.tuxcare.els19.x86_64.rpm
    sha:c53fb4a053ad634d097da77a82c62dad10bee712a67e59fa0377a202952b697e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.