Search CVE reports


Toggle filters

11 – 20 of 262 results


CVE-2026-55892

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to 9.2.0662, the dump_prefixes() function in src/spell.c walks a spell-file prefix trie iteratively with a depth counter while dumping the prefixes that apply to a word. The...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-55693

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to 9.2.0653, the tree_count_words() function in src/spellfile.c fills in the word-count fields of a spell-file word trie by walking it iteratively with a depth counter. The...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-52860

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to version 9.2.0597, Vim's Python omni-completion executes reconstructed function and class definitions from the current buffer with exec() as part of populating...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-52859

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to version 9.2.0565, the update_snapshot() function in src/terminal.c copies the visible terminal screen into the scrollback buffer when a snapshot is taken. For each screen...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-52858

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to version 9.2.0561, the Python omni-completion script in python3complete.vim for Vim with the +python3 interpreter enabled (and the legacy pythoncomplete.vim for builds with...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-47167

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to version 9.2.0496, a code injection vulnerability exists in s:stepmatch() in the cucumber filetype plugin (runtime/ftplugin/cucumber.vim) on Vim builds with +ruby support....

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-47162

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to version 9.2.0495, a Vimscript code injection vulnerability exists in s:NetrwBookHistSave() in the netrw plugin (runtime/pack/dist/opt/netrw/autoload/netrw.vim)...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-11487

Medium priority
Needs evaluation

A flaw has been found in Neovim up to 0.12.2. Affected by this issue is the function M.read of the file runtime/lua/vim/secure.lua of the component View Branch. Executing a manipulation of the argument path can lead to command...

1 affected package

neovim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
neovim Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2026-43961

Medium priority
Fixed

[Unknown description]

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2026-46483

Medium priority
Fixed

Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar() in runtime/autoload/tar.vim when decompressing .tgz archives on Unix-like systems. The function builds...

1 affected package

vim

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
vim Fixed Fixed Fixed Fixed Fixed
Show less packages