Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
af2b63ad by Salvatore Bonaccorso at 2026-06-25T21:36:23+02:00
Add some more vim issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,9 +67,13 @@ CVE-2026-57453 (Vim is an open source, command line text 
editor. From 9.1.1784 u
        NOTE: https://github.com/vim/vim/security/advisories/GHSA-x5fg-h5w9-9frf
        NOTE: Fixed by: 
https://github.com/vim/vim/commit/b2cc9be119d51212bf0d3f2a994c7e517c73f4a9 
(v9.2.0678)
 CVE-2026-57452 (Vim is an open source, command line text editor. Prior to 
9.2.0671, wh ...)
-       TODO: check
+       - vim <unfixed>
+       NOTE: https://github.com/vim/vim/security/advisories/GHSA-c4j9-wr9j-4486
+       NOTE: Fixed by: 
https://github.com/vim/vim/commit/c8777cec25dcfae89c42e9aff51af61f71c5745f 
(v9.2.0671)
 CVE-2026-57451 (Vim is an open source, command line text editor. Prior to 
9.2.0670, ge ...)
-       TODO: check
+       - vim <unfixed>
+       NOTE: https://github.com/vim/vim/security/advisories/GHSA-f36c-2qcp-7gpw
+       NOTE: Fixed by: 
https://github.com/vim/vim/commit/b2338ca90643e2f01ecb6547c1172716aaec4f79 
(v9.2.0670)
 CVE-2026-57438 (Nokogiri is an open source XML and HTML library for the Ruby 
programmi ...)
        TODO: check
 CVE-2026-57437 (Nokogiri is an open source XML and HTML library for the Ruby 
programmi ...)
@@ -155,9 +159,13 @@ CVE-2026-55967 (AES-GCM encryption/decryption with 
extremely large cumulative si
 CVE-2026-55961 (wolfSSL_PKCS7_verify() returning success for a degenerate 
(certs-only) ...)
        TODO: check
 CVE-2026-55895 (Vim is an open source, command line text editor. Prior to 
9.2.0663, a  ...)
-       TODO: check
+       - vim <unfixed>
+       NOTE: https://github.com/vim/vim/security/advisories/GHSA-vhh8-v6wx-hjjh
+       NOTE: Fixed by: 
https://github.com/vim/vim/commit/55bc757a5d436e59d50fe43f7cda94b118f86cb2 
(v9.2.0663)
 CVE-2026-55892 (Vim is an open source, command line text editor. Prior to 
9.2.0662, th ...)
-       TODO: check
+        - vim <unfixed>
+       NOTE: https://github.com/vim/vim/security/advisories/GHSA-qm9w-fmpj-879h
+       NOTE: Fixed by: 
https://github.com/vim/vim/commit/8325b193bba5f01e7a7d8241fc8633d93dff996b 
(v9.2.0662)
 CVE-2026-55700 (pnpm is a package manager. From 11.3.0 until 11.5.3, `pnpm 
stage downl ...)
        TODO: check
 CVE-2026-55699 (pnpm is a package manager. Prior to 10.34.2 and 11.5.3, 
Manifest bin o ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af2b63ad2d8b6477e1ed31ac73fc87df6fff3c31

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af2b63ad2d8b6477e1ed31ac73fc87df6fff3c31
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to