AZL-76764

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-76764.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-76764

Upstream

CVE-2026-25749

Published

2026-02-06T23:15:54Z

Modified

2026-04-01T05:22:58.887908Z

Summary

CVE-2026-25749 affecting package vim 9.1.1616-1

Details

Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution logic when processing the 'helpfile' option. The vulnerability is located in the get_tagfname() function in src/tag.c. When processing help file tags, Vim copies the user-controlled 'helpfile' option value into a fixed-size heap buffer of MAXPATHL + 1 bytes (typically 4097 bytes) using an unsafe STRCPY() operation without any bounds checking. This issue has been patched in version 9.1.2132.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-25749

Affected packages

Azure Linux:3 / vim

Package

Name: vim
Purl: pkg:rpm/azure-linux/vim

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

9.1.1616-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-76764.json"