{"id":"CLSA-2026-1777389760","summary":"vim: Fix of 9 CVEs","details":"- CVE-2021-3903: do not set VALID_BOTLINE in w_valid when the screen is\n  not valid, preventing invalid memory access while scrolling.\n- CVE-2021-4069: copy the current line before regexec in ex_open() so the\n  match is not using freed memory when searching for a mark flushes it.\n- CVE-2022-0351: limit eval7() recursion to 1000 levels to prevent a stack\n  overflow from many nested \"(\" in an expression.\n- CVE-2022-2129: disallow switching buffers in a substitute expression by\n  extending the do_exedit() lock check to cover textlock as well.\n- CVE-2022-2183: avoid reading past the NUL terminator in get_lisp_indent().\n- CVE-2022-2287: reject words containing control characters or a trailing\n  slash before adding them to the internal spell word list.\n- CVE-2022-3234: guard PBYTE against the cursor landing past the NUL in\n  op_replace() with virtualedit, and skip the virtualedit coladd branch\n  when a replacement has already happened.\n- CVE-2022-3520: clamp b_op_end.col to zero in do_put() to prevent a\n  negative column with Visual block put.\n- CVE-2022-3591: disallow navigating to a dummy buffer in do_buffer() to\n  prevent use-after-free.","modified":"2026-05-27T11:18:28.013310338Z","published":"2026-04-28T15:22:44Z","upstream":["CVE-2021-3903","CVE-2021-4069","CVE-2022-0351","CVE-2022-2129","CVE-2022-2183","CVE-2022-2287","CVE-2022-3234","CVE-2022-3520","CVE-2022-3591"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/oraclelinux7els/CLSA-2026-1777389760.html"}],"affected":[{"package":{"name":"vim-X11","ecosystem":"TuxCare:OracleLinux:7","purl":"pkg:rpm/tuxcare/vim-X11?distro=oraclelinux-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:7.4.629-8.0.1.el7_9.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777389760.json"}},{"package":{"name":"vim-common","ecosystem":"TuxCare:OracleLinux:7","purl":"pkg:rpm/tuxcare/vim-common?distro=oraclelinux-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:7.4.629-8.0.1.el7_9.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777389760.json"}},{"package":{"name":"vim-enhanced","ecosystem":"TuxCare:OracleLinux:7","purl":"pkg:rpm/tuxcare/vim-enhanced?distro=oraclelinux-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:7.4.629-8.0.1.el7_9.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777389760.json"}},{"package":{"name":"vim-filesystem","ecosystem":"TuxCare:OracleLinux:7","purl":"pkg:rpm/tuxcare/vim-filesystem?distro=oraclelinux-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:7.4.629-8.0.1.el7_9.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777389760.json"}},{"package":{"name":"vim-minimal","ecosystem":"TuxCare:OracleLinux:7","purl":"pkg:rpm/tuxcare/vim-minimal?distro=oraclelinux-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:7.4.629-8.0.1.el7_9.tuxcare.els4"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/oraclelinux7els/CLSA-2026-1777389760.json"}}],"schema_version":"1.7.5"}