[CLSA-2026:1777568566] vim: Fix of CVE-2026-39881
Type:
security
Severity:
Important
Release date:
2026-05-05 21:18:06 UTC
Description:
- CVE-2026-39881: fix command injection in netbeans interface by validating defineAnnoType typeName/fg/bg and specialKeys tokens against an allowlist of safe characters before interpolating them into Ex commands
Updated packages:
  • vim-X11-7.4.629-5.2.el6.tuxcare.els50.x86_64.rpm
    sha:000c7c3408349d5b7d6901cd5093220026c1cd950820875283be20784ea93b07
  • vim-common-7.4.629-5.2.el6.tuxcare.els50.x86_64.rpm
    sha:9456551570ec68f570ca3566d6084b7349f7c27f21db9178796f1b127b3d5036
  • vim-enhanced-7.4.629-5.2.el6.tuxcare.els50.x86_64.rpm
    sha:14973dedde56ba2d680d6860c857a4a93b51806ddc929d4a082f144edaa9db62
  • vim-filesystem-7.4.629-5.2.el6.tuxcare.els50.x86_64.rpm
    sha:79f1caf064535f98e0873635f25ef87ce35074e33e450d3d0d5ce115ffafc357
  • vim-minimal-7.4.629-5.2.el6.tuxcare.els50.x86_64.rpm
    sha:e89fa234be3f952e926f752e872da7bfb7ad6b76825f108c5807eab15ef47b69
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.