[CLSA-2026:1782143913] vim: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2026-06-22 15:58:51 UTC
Description:
- CVE-2026-52859: fix out-of-bounds read when copying a terminal cell into the scrollback buffer; bound the cell.chars[] loop with VTERM_MAX_CHARS_PER_CELL (src/terminal.c move_terminal_to_buffer, upstream patch 9.2.0565)
CVEs fixed:
Updated packages:
  • vim-X11-8.0.1763-19.el8.4.tuxcare.els20.x86_64.rpm
    sha:f3ef6e1f0dd3f7915b979083feea38d00459b896b915260b3035e2840cddc016
  • vim-common-8.0.1763-19.el8.4.tuxcare.els20.x86_64.rpm
    sha:8b58db7b893cd99e0fb66273e8bd3d27bd5c8a38857ef4055eea5345e032f6a9
  • vim-enhanced-8.0.1763-19.el8.4.tuxcare.els20.x86_64.rpm
    sha:a03c5e0afc7c6574be02758550fd6dd637ea0ab314f3d720507fcb8a1ebe19d5
  • vim-filesystem-8.0.1763-19.el8.4.tuxcare.els20.noarch.rpm
    sha:1c863b3168eed98295361c2c7b6a682459f4edef11dec3b70b857c6c3ea8d433
  • vim-minimal-8.0.1763-19.el8.4.tuxcare.els20.x86_64.rpm
    sha:a137d9ba320653b50c460354f5318131a3850731c4ce10a2c0ea2e26b27df976
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.