{"id":"USN-8246-1","summary":"vim vulnerabilities","details":"Michał Majchrowicz discovered that Vim’s zip plugin could overwrite\narbitrary files. An attacker could possibly use this issue to delete\nsensitive data or execute arbitrary code. This issue only affected\nUbuntu 26.04 LTS. (CVE-2026-35177)\n\nIt was discovered that Vim’s netbeans interface did not properly\nsanitize certain strings. An attacker could possibly use this issue to\nexecute arbitrary commands. This issue only affected Ubuntu 26.04 LTS.\n(CVE-2026-39881)\n\nIt was discovered that Vim did not properly handle backticks in tag\nfilenames. An attacker could possibly use this issue to execute arbitrary\ncommands. (CVE-2026-41411)","modified":"2026-05-20T16:06:19.537743749Z","published":"2026-05-07T14:58:11Z","related":["UBUNTU-CVE-2026-35177","UBUNTU-CVE-2026-39881","UBUNTU-CVE-2026-41411"],"upstream":["UBUNTU-CVE-2026-35177","UBUNTU-CVE-2026-39881","UBUNTU-CVE-2026-41411"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-8246-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-35177"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-39881"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2026-41411"}],"affected":[{"package":{"name":"vim","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/vim?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.3995-1ubuntu2.29"}]}],"versions":["2:8.2.2434-3ubuntu3","2:8.2.2434-3ubuntu4","2:8.2.3565-1ubuntu1","2:8.2.3565-1ubuntu2","2:8.2.3565-1ubuntu3","2:8.2.3565-1ubuntu5","2:8.2.3995-1ubuntu1","2:8.2.3995-1ubuntu2","2:8.2.3995-1ubuntu2.1","2:8.2.3995-1ubuntu2.3","2:8.2.3995-1ubuntu2.4","2:8.2.3995-1ubuntu2.5","2:8.2.3995-1ubuntu2.7","2:8.2.3995-1ubuntu2.8","2:8.2.3995-1ubuntu2.9","2:8.2.3995-1ubuntu2.10","2:8.2.3995-1ubuntu2.11","2:8.2.3995-1ubuntu2.12","2:8.2.3995-1ubuntu2.13","2:8.2.3995-1ubuntu2.15","2:8.2.3995-1ubuntu2.16","2:8.2.3995-1ubuntu2.17","2:8.2.3995-1ubuntu2.18","2:8.2.3995-1ubuntu2.19","2:8.2.3995-1ubuntu2.20","2:8.2.3995-1ubuntu2.21","2:8.2.3995-1ubuntu2.22","2:8.2.3995-1ubuntu2.23","2:8.2.3995-1ubuntu2.24","2:8.2.3995-1ubuntu2.26","2:8.2.3995-1ubuntu2.27","2:8.2.3995-1ubuntu2.28"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"vim","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-athena","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-common","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-gtk","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-gtk3","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-gui-common","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-nox","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-runtime","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"vim-tiny","binary_version":"2:8.2.3995-1ubuntu2.29"},{"binary_name":"xxd","binary_version":"2:8.2.3995-1ubuntu2.29"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8246-1.json","cves_map":{"ecosystem":"Ubuntu:22.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-41411"}]}}},{"package":{"name":"vim","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/vim?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:9.1.0016-1ubuntu7.13"}]}],"versions":["2:9.0.1672-1ubuntu2","2:9.0.2087-1ubuntu1","2:9.0.2116-1ubuntu1","2:9.0.2116-1ubuntu2","2:9.0.2184-0ubuntu1","2:9.0.2189-1ubuntu1","2:9.1.0-1ubuntu1","2:9.1.0016-1ubuntu2","2:9.1.0016-1ubuntu6","2:9.1.0016-1ubuntu7","2:9.1.0016-1ubuntu7.1","2:9.1.0016-1ubuntu7.2","2:9.1.0016-1ubuntu7.3","2:9.1.0016-1ubuntu7.4","2:9.1.0016-1ubuntu7.5","2:9.1.0016-1ubuntu7.6","2:9.1.0016-1ubuntu7.7","2:9.1.0016-1ubuntu7.8","2:9.1.0016-1ubuntu7.9","2:9.1.0016-1ubuntu7.10","2:9.1.0016-1ubuntu7.11","2:9.1.0016-1ubuntu7.12"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"vim","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-athena","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-common","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-gtk3","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-gui-common","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-motif","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-nox","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-runtime","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"vim-tiny","binary_version":"2:9.1.0016-1ubuntu7.13"},{"binary_name":"xxd","binary_version":"2:9.1.0016-1ubuntu7.13"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8246-1.json","cves_map":{"ecosystem":"Ubuntu:24.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-41411"}]}}},{"package":{"name":"vim","ecosystem":"Ubuntu:25.10","purl":"pkg:deb/ubuntu/vim?arch=source&distro=questing"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:9.1.0967-1ubuntu6.4"}]}],"versions":["2:9.1.0967-1ubuntu4","2:9.1.0967-1ubuntu5","2:9.1.0967-1ubuntu6","2:9.1.0967-1ubuntu6.1","2:9.1.0967-1ubuntu6.2","2:9.1.0967-1ubuntu6.3"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"vim","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-athena","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-common","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-gtk3","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-gui-common","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-motif","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-nox","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-runtime","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"vim-tiny","binary_version":"2:9.1.0967-1ubuntu6.4"},{"binary_name":"xxd","binary_version":"2:9.1.0967-1ubuntu6.4"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8246-1.json","cves_map":{"ecosystem":"Ubuntu:25.10","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-41411"}]}}},{"package":{"name":"vim","ecosystem":"Ubuntu:26.04:LTS","purl":"pkg:deb/ubuntu/vim?arch=source&distro=resolute"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:9.1.2141-1ubuntu4.1"}]}],"versions":["2:9.1.0967-1ubuntu6","2:9.1.1882-1ubuntu1","2:9.1.1882-1ubuntu2","2:9.1.2141-1ubuntu1","2:9.1.2141-1ubuntu2","2:9.1.2141-1ubuntu4"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"vim","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-common","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-gtk3","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-gui-common","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-motif","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-nox","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-runtime","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"vim-tiny","binary_version":"2:9.1.2141-1ubuntu4.1"},{"binary_name":"xxd","binary_version":"2:9.1.2141-1ubuntu4.1"}]},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-8246-1.json","cves_map":{"ecosystem":"Ubuntu:26.04:LTS","cves":[{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-35177"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:N"},{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-39881"},{"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L"},{"type":"Ubuntu","score":"medium"}],"id":"CVE-2026-41411"}]}}}],"schema_version":"1.7.5"}