{"schema_version":"1.7.2","id":"OESA-2026-1565","modified":"2026-03-15T05:53:36Z","published":"2026-03-15T05:53:36Z","upstream":["CVE-2026-28417","CVE-2026-28418","CVE-2026-28419","CVE-2026-28420","CVE-2026-28421","CVE-2026-28422"],"summary":"vim security update","details":"Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor &amp;apos;Vi&amp;apos;, with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems.\r\n\r\nSecurity Fix(es):\n\nVim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL (e.g., using the scp:// protocol handler), an attacker can execute arbitrary shell commands with the privileges of the Vim process. Version 9.2.0073 fixes the issue.(CVE-2026-28417)\n\nVim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim&apos;s Emacs-style tags file parsing logic. When processing a malformed tags file, Vim can be tricked into reading up to 7 bytes beyond the allocated memory boundary. Version 9.2.0074 fixes the issue.(CVE-2026-28418)\n\nVim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim&apos;s Emacs-style tags file parsing logic. When processing a malformed tags file where a delimiter appears at the start of a line, Vim attempts to read memory immediately preceding the allocated buffer. Version 9.2.0075 fixes the issue.(CVE-2026-28419)\n\nVim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer overflow WRITE and an out-of-bounds READ exist in Vim&apos;s terminal emulator when processing maximum combining characters from Unicode supplementary planes. Version 9.2.0076 fixes the issue.(CVE-2026-28420)\n\nVim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim&apos;s swap file recovery logic. Both are caused by unvalidated fields read from crafted pointer blocks within a swap file. Version 9.2.0077 fixes the issue.(CVE-2026-28421)\n\nVim is an open-source, command-line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in the `build_stl_str_hl()` function when rendering a statusline with a multi-byte fill character on a very wide terminal. This vulnerability may lead to application crash or potential security risks.(CVE-2026-28422)","affected":[{"package":{"ecosystem":"openEuler:24.03-LTS-SP2","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-24.03-LTS-SP2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.2092-26.oe2403sp2"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp2.aarch64.rpm"],"noarch":["vim-filesystem-9.0.2092-26.oe2403sp2.noarch.rpm"],"src":["vim-9.0.2092-26.oe2403sp2.src.rpm"],"x86_64":["vim-X11-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp2.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:24.03-LTS-SP3","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-24.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.2092-26.oe2403sp3"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp3.aarch64.rpm"],"noarch":["vim-filesystem-9.0.2092-26.oe2403sp3.noarch.rpm"],"src":["vim-9.0.2092-26.oe2403sp3.src.rpm"],"x86_64":["vim-X11-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp3.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:20.03-LTS-SP4","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-20.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0-40.oe2003sp4"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0-40.oe2003sp4.aarch64.rpm","vim-common-9.0-40.oe2003sp4.aarch64.rpm","vim-debuginfo-9.0-40.oe2003sp4.aarch64.rpm","vim-debugsource-9.0-40.oe2003sp4.aarch64.rpm","vim-enhanced-9.0-40.oe2003sp4.aarch64.rpm","vim-minimal-9.0-40.oe2003sp4.aarch64.rpm"],"noarch":["vim-filesystem-9.0-40.oe2003sp4.noarch.rpm"],"src":["vim-9.0-40.oe2003sp4.src.rpm"],"x86_64":["vim-X11-9.0-40.oe2003sp4.x86_64.rpm","vim-common-9.0-40.oe2003sp4.x86_64.rpm","vim-debuginfo-9.0-40.oe2003sp4.x86_64.rpm","vim-debugsource-9.0-40.oe2003sp4.x86_64.rpm","vim-enhanced-9.0-40.oe2003sp4.x86_64.rpm","vim-minimal-9.0-40.oe2003sp4.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:22.03-LTS-SP4","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-22.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0-40.oe2203sp4"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0-40.oe2203sp4.aarch64.rpm","vim-common-9.0-40.oe2203sp4.aarch64.rpm","vim-debuginfo-9.0-40.oe2203sp4.aarch64.rpm","vim-debugsource-9.0-40.oe2203sp4.aarch64.rpm","vim-enhanced-9.0-40.oe2203sp4.aarch64.rpm","vim-minimal-9.0-40.oe2203sp4.aarch64.rpm"],"noarch":["vim-filesystem-9.0-40.oe2203sp4.noarch.rpm"],"src":["vim-9.0-40.oe2203sp4.src.rpm"],"x86_64":["vim-X11-9.0-40.oe2203sp4.x86_64.rpm","vim-common-9.0-40.oe2203sp4.x86_64.rpm","vim-debuginfo-9.0-40.oe2203sp4.x86_64.rpm","vim-debugsource-9.0-40.oe2203sp4.x86_64.rpm","vim-enhanced-9.0-40.oe2203sp4.x86_64.rpm","vim-minimal-9.0-40.oe2203sp4.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:24.03-LTS","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-24.03-LTS"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.2092-26.oe2403sp1"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp2.aarch64.rpm","vim-X11-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp3.aarch64.rpm","vim-X11-9.0.2092-26.oe2403.aarch64.rpm","vim-common-9.0.2092-26.oe2403.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403.aarch64.rpm","vim-X11-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp1.aarch64.rpm"],"noarch":["vim-filesystem-9.0.2092-26.oe2403sp2.noarch.rpm","vim-filesystem-9.0.2092-26.oe2403sp3.noarch.rpm","vim-filesystem-9.0.2092-26.oe2403.noarch.rpm","vim-filesystem-9.0.2092-26.oe2403sp1.noarch.rpm"],"src":["vim-9.0.2092-26.oe2403sp2.src.rpm","vim-9.0.2092-26.oe2403sp3.src.rpm","vim-9.0.2092-26.oe2403.src.rpm","vim-9.0.2092-26.oe2403sp1.src.rpm"],"x86_64":["vim-X11-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp2.x86_64.rpm","vim-X11-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp3.x86_64.rpm","vim-X11-9.0.2092-26.oe2403.x86_64.rpm","vim-common-9.0.2092-26.oe2403.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403.x86_64.rpm","vim-X11-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp1.x86_64.rpm"]}},{"package":{"ecosystem":"openEuler:24.03-LTS-SP1","name":"vim","purl":"pkg:rpm/openEuler/vim&distro=openEuler-24.03-LTS-SP1"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"9.0.2092-26.oe2403sp1"}]}],"ecosystem_specific":{"aarch64":["vim-X11-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-common-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-debugsource-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-enhanced-9.0.2092-26.oe2403sp1.aarch64.rpm","vim-minimal-9.0.2092-26.oe2403sp1.aarch64.rpm"],"noarch":["vim-filesystem-9.0.2092-26.oe2403sp1.noarch.rpm"],"src":["vim-9.0.2092-26.oe2403sp1.src.rpm"],"x86_64":["vim-X11-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-common-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-debuginfo-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-debugsource-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-enhanced-9.0.2092-26.oe2403sp1.x86_64.rpm","vim-minimal-9.0.2092-26.oe2403sp1.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1565"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28417"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28418"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28419"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28420"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28421"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-28422"}],"database_specific":{"severity":"High"}}