RHSA-2026:28133HighCVSS 8.2

Red Hat Security Advisory: vim security update

Published
June 23, 2026
Last Modified
July 1, 2026

🔗 CVE IDs covered (4)

📋 Description

CVE-2026-34982 — vim: arbitrary command execution via modeline sandbox bypass CVE-2026-35177 — vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass CVE-2026-41411 — vim: Vim: Command injection allows arbitrary code execution via malicious tag files CVE-2026-46483 — vim: command injection when decompressing .tgz archives

🔗 References (7)