Release date:
2026-06-23 13:59:32 UTC
Description:
- CVE-2026-52858: disable execution of import/from statements harvested from
the buffer during python omni-completion (pythoncomplete/python3complete),
gated behind the opt-in g:pythoncomplete_allow_import (upstream 9.2.0561 and
9.2.0568)
- CVE-2026-52860: strip parameter default values and annotations and whitelist
class base expressions before exec() of reconstructed function/class source
in python omni-completion (upstream 9.2.0597)
Updated packages:
-
vim-X11-7.4.629-8.0.1.el7_9.tuxcare.els21.x86_64.rpm
sha:471d40b02677f352cf2fb59e91f369ea3e530bead7bc1d389981a86a61887639
-
vim-common-7.4.629-8.0.1.el7_9.tuxcare.els21.x86_64.rpm
sha:0e3b7ed3ebd7ebdea732acd5b2f54626206fda18c7da427141f6a6f457b096b9
-
vim-enhanced-7.4.629-8.0.1.el7_9.tuxcare.els21.x86_64.rpm
sha:0e1df4dbc6915a54d6a88b8bc9197b87a64b73b1226cc67780d8fd07ae148428
-
vim-filesystem-7.4.629-8.0.1.el7_9.tuxcare.els21.x86_64.rpm
sha:c5f55e57feea9aca7c774bb25a5d7f6d344017d4cb61584f193f9192dad6a31c
-
vim-minimal-7.4.629-8.0.1.el7_9.tuxcare.els21.x86_64.rpm
sha:3dd6ce131f7b0604286ddc619c0b943f27c8a4b1e01311c8ad6fa9018fc4cffb
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
