UbuntuUpdates.org

Package "vim-doc"

Name: vim-doc

Description:

Vi IMproved - HTML documentation
Latest version: 2:9.1.0016-1ubuntu7.15
Release: noble (24.04)
Level: updates
Repository: main
Head package: vim
Homepage: https://www.vim.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "vim-doc"

All arch deb package
APT INSTALL

Other versions of "vim-doc" in Noble

Repository Area Version
base main 2:9.1.0016-1ubuntu7
security main 2:9.1.0016-1ubuntu7.15

Changelog

Version: 2:9.1.0016-1ubuntu7.15 2026-06-09 22:07:33 UTC

  vim (2:9.1.0016-1ubuntu7.15) noble-security; urgency=medium

  * SECURITY UPDATE: Command injection in tar plugin.
    - debian/patches/CVE-2026-46483.patch: Use the correct shell-escape in
      runtime/autoload/tar.vim.
    - CVE-2026-46483
  * SECURITY UPDATE: Code injection via mf command.
    - debian/patches/CVE-2026-43961.patch: Avoid string concatenation for
      filter commands in runtime/autoload/netrw.vim.
    - CVE-2026-43961

 -- Kyle Kernick <email address hidden> Tue, 02 Jun 2026 16:00:15 -0600
Source diff to previous version
CVE-2026-46483 Vim is an open source, command line text editor. Prior to 9.2.0479, a command injection vulnerability exists in tar#Vimuntar() in runtime/autoload/ta

Version: 2:9.1.0016-1ubuntu7.14 2026-05-27 11:07:24 UTC

  vim (2:9.1.0016-1ubuntu7.14) noble-security; urgency=medium

  * SECURITY UPDATE: Command injection in netrw plugin.
    - debian/patches/CVE-2026-42307.patch: Escape file names and harden regex
      patterns in runtime/autoload/netrw.vim
    - CVE-2026-42307
  * SECURITY UPDATE: Shell execution in completion.
    - debian/patches/CVE-2026-44656.patch: Skip path entries containing
      backticks and add P_SECURE option in src/findfile.c and src/optiondefs.h
    - CVE-2026-44656
  * SECURITY UPDATE: Heap overflow in spellfile.
    - debian/patches/CVE-2026-45130.patch: Enforce a maximum compound length
      in src/spellfile.c
    - CVE-2026-45130

 -- Kyle Kernick <email address hidden> Thu, 21 May 2026 13:51:48 -0600
Source diff to previous version
CVE-2026-42307 Vim is an open source, command line text editor. Prior to version 9.2.0383, an OS command injection vulnerability exists in the netrw standard plugin
CVE-2026-44656 Vim is an open source, command line text editor. Prior to version 9.2.0435, an OS command injection vulnerability exists in Vim's :find command-line
CVE-2026-45130 Vim is an open source, command line text editor. Prior to version 9.2.0450, a heap buffer overflow exists in read_compound() in src/spellfile.c when

Version: 2:9.1.0016-1ubuntu7.13 2026-05-07 21:07:29 UTC

  vim (2:9.1.0016-1ubuntu7.13) noble-security; urgency=medium

  * SECURITY UPDATE: Command injection via backtick expansion in tag files
    - debian/patches/CVE-2026-41411.patch: Disallow backticks before attempting
      to expand filenames
    - CVE-2026-41411

 -- Federico Quattrin <email address hidden> Tue, 05 May 2026 06:14:36 -0300
Source diff to previous version
CVE-2026-41411 Vim is an open source, command line text editor. Prior to 9.2.0357, A command injection vulnerability exists in Vim's tag file processing. When resol

Version: 2:9.1.0016-1ubuntu7.12 2026-04-28 02:08:16 UTC

  vim (2:9.1.0016-1ubuntu7.12) noble-security; urgency=medium

  * SECURITY UPDATE: Path Traversal in zip.vim
    - debian/patches/CVE-2026-35177.patch: Detect malicious zip files before
      writing in runtime/autoload/zip.vim
    - CVE-2026-35177
  * SECURITY UPDATE: Command Injection in netbeans
    - debian/patches/CVE-2026-39881.patch: Validate typename, fg, and bg
      before passing to coloncmd in src/netbeans.c
    - CVE-2026-39881

 -- Kyle Kernick <email address hidden> Fri, 24 Apr 2026 13:05:03 -0600
Source diff to previous version
CVE-2026-35177 Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows overwriting of arbitrary f
CVE-2026-39881 Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious

Version: 2:9.1.0016-1ubuntu7.11 2026-04-14 01:10:44 UTC

  vim (2:9.1.0016-1ubuntu7.11) noble-security; urgency=medium

  * SECURITY UPDATE: NULL pointer dereference in the NFA regex engine.
    - debian/patches/CVE-2026-32249.patch: Add range_endpoint and if checks
      in src/regexp_nfa.c. Add tests in src/testdir/test_regexp_utf8.vim.
    - CVE-2026-32249
  * SECURITY UPDATE: Command injection in glob.
    - debian/patches/CVE-2026-33412.patch: Add newline to SHELL_SPECIAL in
      src/os_unix.c.
    - CVE-2026-33412
  * SECURITY UPDATE: Security bypass in modeline.
    - debian/patches/CVE-2026-34982.patch: Disallow modeset while in secure
       mode in src/map.c and src/optiondefs.h.
    - CVE-2026-34982

 -- Kyle Kernick <email address hidden> Mon, 06 Apr 2026 13:30:21 -0600
CVE-2026-32249 Vim is an open source, command line text editor. From 9.1.0011 to before 9.2.0137, Vim's NFA regex compiler, when encountering a collection containin
CVE-2026-33412 Vim is an open source, command line text editor. Prior to version 9.2.0202, a command injection vulnerability exists in Vim's glob() function on Unix
CVE-2026-34982 Vim is an open source, command line text editor. Prior to version 9.2.0276, a modeline sandbox bypass in Vim allows arbitrary OS command execution wh


About   -   Send Feedback to @ubuntu_updates