Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3bce8a3d by Salvatore Bonaccorso at 2026-06-25T21:32:16+02:00
Add new vim issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -47,13 +47,25 @@ CVE-2026-57533 (Malicious HTML content could be injected
into the page pretix sh
CVE-2026-57532 (Malicious HTML content contained in the layout specification
of a PDF ...)
NOT-FOR-US: rami.io products
CVE-2026-57456 (Vim is an open source, command line text editor. Prior to
9.2.0699, Vi ...)
- TODO: check
+ - vim <unfixed>
+ NOTE: https://github.com/vim/vim/security/advisories/GHSA-ppj8-wqjf-6fp3
+ NOTE: Fixed by:
https://github.com/vim/vim/commit/cce141c42740f122dd8486ae04e21c2a81016ba8
(v9.2.0699)
CVE-2026-57455 (Vim is an open source, command line text editor. Prior to
9.2.0698, th ...)
- TODO: check
+ - vim <unfixed>
+ NOTE: https://github.com/vim/vim/security/advisories/GHSA-q8mh-6qm3-25g4
+ NOTE: Fixed by:
https://github.com/vim/vim/commit/497f931f85339d175d7f69588dd249e8ccfed41b
(v9.2.0698)
CVE-2026-57454 (Vim is an open source, command line text editor. From 9.2.0320
until 9 ...)
- TODO: check
+ - vim <unfixed>
+ [trixie] - vim <not-affected> (Vulnerable code not present)
+ [bookworm] - vim <not-affected> (Vulnerable code not present)
+ [bullseye] - vim <not-affected> (Vulnerable code not present)
+ NOTE: https://github.com/vim/vim/security/advisories/GHSA-ww8h-47xp-hp4w
+ NOTE: Introduced with:
https://github.com/vim/vim/commit/ff41e9d853ef3e366575e375d8c40cf11d5e331b
(v9.2.0320)
+ NOTE: Fixed by:
https://github.com/vim/vim/commit/b3faeecc976d3031d7c0675623516ec60c30f949
(v9.2.0679)
CVE-2026-57453 (Vim is an open source, command line text editor. From 9.1.1784
until 9 ...)
- TODO: check
+ - vim <unfixed>
+ NOTE: https://github.com/vim/vim/security/advisories/GHSA-x5fg-h5w9-9frf
+ NOTE: Fixed by:
https://github.com/vim/vim/commit/b2cc9be119d51212bf0d3f2a994c7e517c73f4a9
(v9.2.0678)
CVE-2026-57452 (Vim is an open source, command line text editor. Prior to
9.2.0671, wh ...)
TODO: check
CVE-2026-57451 (Vim is an open source, command line text editor. Prior to
9.2.0670, ge ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bce8a3dd0569e37dc9e7fcf611755efc862ae6d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3bce8a3dd0569e37dc9e7fcf611755efc862ae6d
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits