Release date:
2026-05-25 09:19:43 UTC
Description:
- CVE-2026-42307: fix shell injection in netrw via the tempfile suffix when
reading sftp:// or file:// URLs by escaping the tempfile and restricting
the suffix regex to word characters
Updated packages:
-
vim-X11-8.2.2637-22.el9_6.1.tuxcare.els29.x86_64.rpm
sha:03c4f0d6589ebe58e88acc2a85311ca8fa66b557bd2c43d452897975a39f15cb
-
vim-common-8.2.2637-22.el9_6.1.tuxcare.els29.x86_64.rpm
sha:86408c904a67548a0e8ea8ca6f253140d942a0c0fce811708dee69a1e2ed6149
-
vim-enhanced-8.2.2637-22.el9_6.1.tuxcare.els29.x86_64.rpm
sha:4b13f48d4b9d56fd955b7cb8ae922ef4469e6c1f0a37015d82d34483eee73b7a
-
vim-filesystem-8.2.2637-22.el9_6.1.tuxcare.els29.noarch.rpm
sha:f52423f6e0f77dc5c1725df32e1e897c7e4846a742c39a07f92b2b714c26cc4c
-
vim-minimal-8.2.2637-22.el9_6.1.tuxcare.els29.x86_64.rpm
sha:b9fbc18b5a018926be61453644718fcefcfe0f9db145d4369c0b74c63dd6474c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
