CLSA-2026-1778610428

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2026-1778610428
Upstream
Published
2026-05-12T18:27:13Z
Modified
2026-05-27T11:36:05.296231397Z
Summary
vim: Fix of 3 CVEs
Details
  • CVE-2022-2257: fix out-of-bounds read in str2special() when advancing past the trailing NUL of a menu item with only a modifier (message.c, upstream patch 9.0.0009)
  • CVE-2022-2182: fix heap buffer overflow in parsecmdaddress() when address line 0 is used with the ";" separator (":0;/PATTERN/"); clamp cursor column via checkcursorcol() for line 0 (ex_docmd.c, upstream patch 8.2.5150)
  • CVE-2022-2849: return zero byte length for NUL in latinptr2len() and dbcsptr2len() so iterating past the end of a null string cannot dereference an invalid address (mbyte.c, upstream patch 9.0.0220; minimal form — only the functional changes backported)
References

Affected packages

TuxCare:AlmaLinux:9.6
vim-X11

Package

Name
vim-X11
Purl
pkg:rpm/tuxcare/vim-X11?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:8.2.2637-22.el9_6.1.tuxcare.els26

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json"
vim-common

Package

Name
vim-common
Purl
pkg:rpm/tuxcare/vim-common?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:8.2.2637-22.el9_6.1.tuxcare.els26

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json"
vim-enhanced

Package

Name
vim-enhanced
Purl
pkg:rpm/tuxcare/vim-enhanced?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:8.2.2637-22.el9_6.1.tuxcare.els26

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json"
vim-filesystem

Package

Name
vim-filesystem
Purl
pkg:rpm/tuxcare/vim-filesystem?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:8.2.2637-22.el9_6.1.tuxcare.els26

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json"
vim-minimal

Package

Name
vim-minimal
Purl
pkg:rpm/tuxcare/vim-minimal?distro=almalinux-9.6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2:8.2.2637-22.el9_6.1.tuxcare.els26

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1778610428.json"