[CLSA-2026:1780713496] vim: Fix of 2 CVEs
Type:
security
Severity:
Important
Release date:
2026-06-08 19:54:28 UTC
Description:
- CVE-2026-41411: prevent OS command injection in tag-file backtick expansion
CVEs fixed:
Updated packages:
  • vim-X11-8.2.2637-22.el9_2.1.tuxcare.els33.x86_64.rpm
    sha:0e3332c6a635bad4196771390aec2146aa7e3d4e185cd07682771a1c2ffb7a4d
  • vim-common-8.2.2637-22.el9_2.1.tuxcare.els33.x86_64.rpm
    sha:67ad80a77564c202b5a84914598e1f9c25e603de81948f6ad476983415b29f57
  • vim-enhanced-8.2.2637-22.el9_2.1.tuxcare.els33.x86_64.rpm
    sha:f4811f9b63c5fe4a8f075bf3bd362f1d3748dc65d78f717d33ca957b52bb43b4
  • vim-filesystem-8.2.2637-22.el9_2.1.tuxcare.els33.noarch.rpm
    sha:92bfce3b7e670357c7cad5789b6f469612323f49f1ea2723e41fc3041298816a
  • vim-minimal-8.2.2637-22.el9_2.1.tuxcare.els33.x86_64.rpm
    sha:5535bee57eda3534b0fc50fb52de9bf47d0f00284504bd9c53371f227fa874e1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.