CLSA-2026-1778259521

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1778259521

Upstream

CVE-2022-3278

CVE-2023-48234

CVE-2023-48236

CVE-2025-26603

Published

2026-05-08T16:58:46Z

Modified

2026-06-01T00:32:29.858636495Z

Summary

vim: Fix of 4 CVEs

Details

CVE-2022-3278: fix crash when using NUL in buffer that uses :source; don't get a next line when skipping over NL in evalnextnon_blank() (eval.c, upstream patch 9.0.0552)
CVE-2023-48234: fix overflow when getting count for normal z command; break out of nvzet() count loop when n > LONGMAX/10 (normal.c, upstream patch 9.0.2109)
CVE-2023-48236: fix overflow in getnumber() when using z= with a large count; return 0 when n > INTMAX/10 (misc1.c, upstream patch 9.0.2111)
CVE-2025-26603: fix use-after-free in strtoreg() when redirecting :display to a clipboard register; skip the active redir register including the * and + clipboard fallbacks to register 0 (register.c, upstream patch 9.1.1115)

References

https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2026-1778259521.html

Affected packages

TuxCare:AlmaLinux:9.2

vim-X11

Package

Name: vim-X11
Purl: pkg:rpm/tuxcare/vim-X11?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-22.el9_2.1.tuxcare.els25

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json"

vim-common

Package

Name: vim-common
Purl: pkg:rpm/tuxcare/vim-common?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-22.el9_2.1.tuxcare.els25

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json"

vim-enhanced

Package

Name: vim-enhanced
Purl: pkg:rpm/tuxcare/vim-enhanced?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-22.el9_2.1.tuxcare.els25

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json"

vim-filesystem

Package

Name: vim-filesystem
Purl: pkg:rpm/tuxcare/vim-filesystem?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-22.el9_2.1.tuxcare.els25

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json"

vim-minimal

Package

Name: vim-minimal
Purl: pkg:rpm/tuxcare/vim-minimal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-22.el9_2.1.tuxcare.els25

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2026-1778259521.json"