{"id":"CLSA-2025-1738170565","summary":"vim: Fix of 5 CVEs","details":"- CVE-2023-2610: limit the text length to MAXCOL\n- CVE-2023-4735: don't overflow buf2, check size in for loop()\n- CVE-2023-4750: check buffer is valid before accessing it\n- CVE-2023-4752: validate buffer before accessing it\n- CVE-2023-4781: disallow exchanging windows when textlock is active\n- Drop the patch level in version.c to the original one","modified":"2026-06-01T00:30:19.741925309Z","published":"2025-01-29T17:09:33Z","upstream":["CVE-2023-2610","CVE-2023-4735","CVE-2023-4750","CVE-2023-4752","CVE-2023-4781"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/almalinux9.2-esu/CLSA-2025-1738170565.html"}],"affected":[{"package":{"name":"vim-X11","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/vim-X11?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.2637-20.el9_1.tuxcare.els9"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"}},{"package":{"name":"vim-common","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/vim-common?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.2637-20.el9_1.tuxcare.els9"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"}},{"package":{"name":"vim-enhanced","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/vim-enhanced?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.2637-20.el9_1.tuxcare.els9"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"}},{"package":{"name":"vim-filesystem","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/vim-filesystem?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.2637-20.el9_1.tuxcare.els9"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"}},{"package":{"name":"vim-minimal","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/vim-minimal?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2:8.2.2637-20.el9_1.tuxcare.els9"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1738170565.json"}}],"schema_version":"1.7.5"}