Release date:
2026-05-19 09:34:00 UTC
Description:
- CVE-2021-4069: copy ml_get_curline() in ex_open() so a flushed line buffer is not used after vim_regexec()
- CVE-2022-2000: truncate IObuff with "..." in append_command() when remaining space is below threshold
- CVE-2022-3099: guard do_cmdline() breakpoint lookup with lines_ga.ga_len > current_line check
- CVE-2022-1968: introduce get_line_and_copy() in find_pattern_in_path() so mark-based regex cannot invalidate the line
- CVE-2022-0443: cache buf_valid() in set_curbuf() and fall back to lastbuf when buffer was wiped out
- CVE-2022-1735: add check_visual_pos() and call it after every change/stop_insert so VIsual mark is clamped
Updated packages:
-
vim-X11-8.0.1763-16.el8.tuxcare.els3.x86_64.rpm
sha:e2fc326aa6f0999c6baf0efdb8d25e8b8b4176431f89387dca8e7a0b782d1e4a
-
vim-common-8.0.1763-16.el8.tuxcare.els3.x86_64.rpm
sha:ef84685c8265f32170a758a6dbcd5fad12a97b929c2548de5d36410029c492f6
-
vim-enhanced-8.0.1763-16.el8.tuxcare.els3.x86_64.rpm
sha:c892ad6211ed16064498a0f88256849000637195b95c5dd893e7cf8d1ac2282b
-
vim-filesystem-8.0.1763-16.el8.tuxcare.els3.noarch.rpm
sha:36080347c52becc2c9feabd7b7bf89b421fdd0788a7cae8e760c44610b54932f
-
vim-minimal-8.0.1763-16.el8.tuxcare.els3.x86_64.rpm
sha:220633a3c9a68c3ddb49e068a50918181059ab321a1d3ccd8104dca5c2e6afe5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
