[CLSA-2026:1784038367] vim: Fix of CVE-2026-59858
Type:
security
Severity:
Important
Release date:
2026-07-14 14:13:04 UTC
Description:
- CVE-2026-59858: fix arbitrary Ex command execution in C omni-completion by escaping the typeref/typename tag field before inserting it into the :vimgrep pattern in ccomplete.vim (upstream 9.2.0735)
CVEs fixed:
Updated packages:
  • vim-X11-7.4.629-5.2.el6.tuxcare.els60.x86_64.rpm
    sha:2816322d6b6bdca9bccbb8d2b7fac300181057d98da49f2d08e6bad2bd911a5a
  • vim-common-7.4.629-5.2.el6.tuxcare.els60.x86_64.rpm
    sha:6ba61fd58d6fc1c9144abd2a0ebc7ec56809ffc26acdf33817fbb244dee7c939
  • vim-enhanced-7.4.629-5.2.el6.tuxcare.els60.x86_64.rpm
    sha:d42335717c125c6084102b245dc430d4a56f789ac2903f0144f16737d783a3ae
  • vim-filesystem-7.4.629-5.2.el6.tuxcare.els60.x86_64.rpm
    sha:c805e3664f7269ff7f437762d97d960a2e1d479700fef95daaa12e7178580335
  • vim-minimal-7.4.629-5.2.el6.tuxcare.els60.x86_64.rpm
    sha:d1cebe17bef5f224c33bc7819ac2c3dfbf4441f2bef1d62195c66f4f22ab8f54
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.