CLSA-2025-1738170565

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2025-1738170565

Upstream

CVE-2023-2610

CVE-2023-4735

CVE-2023-4750

CVE-2023-4752

CVE-2023-4781

Published

2025-01-29T17:09:33Z

Modified

2026-05-27T11:15:49.372792263Z

Summary

vim: Fix of 5 CVEs

Details

CVE-2023-2610: limit the text length to MAXCOL
CVE-2023-4735: don't overflow buf2, check size in for loop()
CVE-2023-4750: check buffer is valid before accessing it
CVE-2023-4752: validate buffer before accessing it
CVE-2023-4781: disallow exchanging windows when textlock is active
Drop the patch level in version.c to the original one

References

https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2025-1738170565.html

Affected packages

TuxCare:AlmaLinux:9.2

vim-X11

Package

Name: vim-X11
Purl: pkg:rpm/tuxcare/vim-X11?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-20.el9_1.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"

vim-common

Package

Name: vim-common
Purl: pkg:rpm/tuxcare/vim-common?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-20.el9_1.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"

vim-enhanced

Package

Name: vim-enhanced
Purl: pkg:rpm/tuxcare/vim-enhanced?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-20.el9_1.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"

vim-filesystem

Package

Name: vim-filesystem
Purl: pkg:rpm/tuxcare/vim-filesystem?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-20.el9_1.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"

vim-minimal

Package

Name: vim-minimal
Purl: pkg:rpm/tuxcare/vim-minimal?distro=almalinux-9.2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:8.2.2637-20.el9_1.tuxcare.els9

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"