[CLSA-2026:1781607668] vim: Fix of CVE-2026-47162
Type:
security
Severity:
Important
Release date:
2026-06-16 11:35:25 UTC
Description:
- CVE-2026-47162: use string() in netrw s:NetrwBookHistSave() to safely encode directory-history entries and prevent Vimscript injection
CVEs fixed:
Updated packages:
  • vim-X11-8.2.2637-22.el9_6.1.tuxcare.els34.x86_64.rpm
    sha:4eebfeecf5c849263468943b65a52d2a690205d69f5e08dfaf3002becb8e94cd
  • vim-common-8.2.2637-22.el9_6.1.tuxcare.els34.x86_64.rpm
    sha:d583226b4c4714da488e21fd40b9aac103c7b1f4312c501a74c7af5c8907c7d1
  • vim-enhanced-8.2.2637-22.el9_6.1.tuxcare.els34.x86_64.rpm
    sha:e67864580a7d150c6bc4fe42925627f826c016172b8cd8685325ecb6d56e5bc7
  • vim-filesystem-8.2.2637-22.el9_6.1.tuxcare.els34.noarch.rpm
    sha:562e2fe0610a5bc945bebde34b25ad47d8007bd3d8c5118df959c94047efdf16
  • vim-minimal-8.2.2637-22.el9_6.1.tuxcare.els34.x86_64.rpm
    sha:bcc98c5202424a36d1e40abc13fd320c2ed0f7ba1dd807ab5f9652d7eb2d6885
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.