CLSA-2026-1777542146

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2026-1777542146

Upstream

CVE-2023-1170

CVE-2023-1175

CVE-2023-1264

Published

2026-04-30T09:42:32Z

Modified

2026-05-27T11:18:28.050458149Z

Summary

vim: Fix of 3 CVEs

Details

CVE-2023-1170: at the end of do_put() (ops.c), clamp the cursor column back to the line length (and recompute coladd under virtualedit=all) so a Visual block put past the new NUL no longer leaves the cursor pointing past end-of-line.
CVE-2023-1175: in op_yank() (ops.c), when the yank starts inside a multi-cell tab under virtual editing, clamp bd.startspaces to 0 before incrementing startcol so a negative width can't drive the later block-yank copy out of bounds.
CVE-2023-1264: in vgetorpeek() (getchar.c), guard the dead-character putcmdline()/unputcmdline() paths with cmdlinehasbuffer() (new ex_getln.c helper) so a nested :open command with a NULL ccline.cmdbuff no longer dereferences it.

References

https://errata.tuxcare.com/els_os/oraclelinux7els/CLSA-2026-1777542146.html

Affected packages

TuxCare:OracleLinux:7

vim-X11

Package

Name: vim-X11
Purl: pkg:rpm/tuxcare/vim-X11?distro=oraclelinux-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:7.4.629-8.0.1.el7_9.tuxcare.els12

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json"

vim-common

Package

Name: vim-common
Purl: pkg:rpm/tuxcare/vim-common?distro=oraclelinux-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:7.4.629-8.0.1.el7_9.tuxcare.els12

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json"

vim-enhanced

Package

Name: vim-enhanced
Purl: pkg:rpm/tuxcare/vim-enhanced?distro=oraclelinux-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:7.4.629-8.0.1.el7_9.tuxcare.els12

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json"

vim-filesystem

Package

Name: vim-filesystem
Purl: pkg:rpm/tuxcare/vim-filesystem?distro=oraclelinux-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:7.4.629-8.0.1.el7_9.tuxcare.els12

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json"

vim-minimal

Package

Name: vim-minimal
Purl: pkg:rpm/tuxcare/vim-minimal?distro=oraclelinux-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:7.4.629-8.0.1.el7_9.tuxcare.els12

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777542146.json"