Ubuntu Security Update USN-8246-1: Vim vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,739
Reaction score
74
Credits
-1,257
Michał Majchrowicz discovered that Vim’s zip plugin could overwrite arbitrary files. An attacker could possibly use this issue to delete sensitive data or execute arbitrary code. This issue only affected Ubuntu 26.04 LTS. (CVE-2026-35177) It was discovered that Vim’s netbeans interface did not properly sanitize certain strings. An attacker could possibly use this issue to execute arbitrary commands. This issue only affected Ubuntu 26.04 LTS. (CVE-2026-39881) It was discovered that Vim did not properly handle backticks in tag filenames. An attacker could possibly use this issue to execute arbitrary commands. (CVE-2026-41411)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8213-1: Vim vulnerabilities
Replies
0
Views
122
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8171-1: Vim vulnerabilities
Replies
0
Views
224
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8101-1: Vim vulnerabilities
Replies
0
Views
203
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8294-1: PostgreSQL vulnerabilities
Replies
0
Views
93
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8282-1: Unbound vulnerabilities
Replies
0
Views
103
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 4,426 (members: 1, guests: 4,425)

Latest posts

Top