CLSA-2026-1779212372

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1779212372

Upstream

CVE-2026-42307

Published

2026-05-19T17:39:38Z

Modified

2026-06-01T00:33:26.064947533Z

Summary

vim: Fix of CVE-2026-42307

Details

CVE-2026-42307: fix OS command injection in netrw plugin via crafted sftp:// URLs by hardening the tempfile suffix regex and escaping the tempfile argument before passing it to the sftp command

References

https://errata.tuxcare.com/els_os/oraclelinux6els/CLSA-2026-1779212372.html

Affected packages

TuxCare:OracleLinux:6

vim-X11

Package

Name: vim-X11
Purl: pkg:rpm/tuxcare/vim-X11?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:7.4.629-5.2.el6.tuxcare.els51

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json"

vim-common

Package

Name: vim-common
Purl: pkg:rpm/tuxcare/vim-common?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:7.4.629-5.2.el6.tuxcare.els51

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json"

vim-enhanced

Package

Name: vim-enhanced
Purl: pkg:rpm/tuxcare/vim-enhanced?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:7.4.629-5.2.el6.tuxcare.els51

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json"

vim-filesystem

Package

Name: vim-filesystem
Purl: pkg:rpm/tuxcare/vim-filesystem?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:7.4.629-5.2.el6.tuxcare.els51

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json"

vim-minimal

Package

Name: vim-minimal
Purl: pkg:rpm/tuxcare/vim-minimal?distro=oraclelinux-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3:7.4.629-5.2.el6.tuxcare.els51

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux6els/CLSA-2026-1779212372.json"