Release date:
2026-05-20 10:01:43 UTC
Description:
- CVE-2026-35177: fix path traversal in zip.vim — block .. components via simplify() in zip#Write and zip#Extract (upstream vim 9.2.0280 + CVE-2025-53906 prereq combined)
Updated packages:
-
vim-X11-8.0.1763-16.el8.tuxcare.els13.x86_64.rpm
sha:d25970cd4a61e25931fbf52731d0b0e46a01b2d938b4f81f6e4aba2dfa55bdb9
-
vim-common-8.0.1763-16.el8.tuxcare.els13.x86_64.rpm
sha:a64da0141b1101267ce5bf92567cac7ca53760b5b7161ad4972bd6e5e726c149
-
vim-enhanced-8.0.1763-16.el8.tuxcare.els13.x86_64.rpm
sha:c9af5464106cf78cf6439b6c5b2efcfb6a27bba08de047ac0de83df0a45da1f7
-
vim-filesystem-8.0.1763-16.el8.tuxcare.els13.noarch.rpm
sha:f4f0468cab56df12ee39c95449c2d21080e237f64b3836b01fbf305a50556eb5
-
vim-minimal-8.0.1763-16.el8.tuxcare.els13.x86_64.rpm
sha:9c1aaa273a97b0367fcc981f25136b14853deaddff113185b77a85e9625a4040
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
