CLSA-2026-1780388996

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1780388996

Upstream

CVE-2026-46483

Published

2026-06-02T08:30:09Z

Modified

2026-06-04T09:45:29.697789010Z

Summary

Fix CVE(s): CVE-2026-46483

Details

SECURITY UPDATE: OS command injection in tar#Vimuntar() in runtime/autoload/tar.vim via crafted .tgz filename (use shellescape(tartail, 1) for :! commands)
- debian/patches/CVE-2026-46483.patch: OS command injection in tar#Vimuntar() in runtime/autoload/tar.vim via crafted .tgz filename (use shellescape(tartail, 1) for :! commands)
- CVE-2026-46483

References

Affected packages

TuxCare:Debian:10

vim

Package

Name: vim
Purl: pkg:deb/tuxcare/vim?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-athena

Package

Name: vim-athena
Purl: pkg:deb/tuxcare/vim-athena?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-common

Package

Name: vim-common
Purl: pkg:deb/tuxcare/vim-common?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-doc

Package

Name: vim-doc
Purl: pkg:deb/tuxcare/vim-doc?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-gtk

Package

Name: vim-gtk
Purl: pkg:deb/tuxcare/vim-gtk?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-gtk3

Package

Name: vim-gtk3
Purl: pkg:deb/tuxcare/vim-gtk3?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-gui-common

Package

Name: vim-gui-common
Purl: pkg:deb/tuxcare/vim-gui-common?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-nox

Package

Name: vim-nox
Purl: pkg:deb/tuxcare/vim-nox?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-runtime

Package

Name: vim-runtime
Purl: pkg:deb/tuxcare/vim-runtime?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

vim-tiny

Package

Name: vim-tiny
Purl: pkg:deb/tuxcare/vim-tiny?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"

xxd

Package

Name: xxd
Purl: pkg:deb/tuxcare/xxd?distro=debian-10

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.1.0875-5+deb10u6+tuxcare.els20

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/debian10els/CLSA-2026-1780388996.json"