ELSA-2026-22717

ULN >
Oracle Linux Errata repository >
ELSA-2026-22717

ELSA-2026-22717 - vim security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-06-23

Description

[8.2.2637-26.0.1.el9_8.5]
- Remove upstream references [Orabug: 31197557]

[2:8.2.2637-26.5]
- RHEL-170136 CVE-2026-35177 vim: Vim zip.vim plugin: Arbitrary file overwrite
via path traversal bypass

[2:8.2.2637-26.4]
- Resolves: RHEL-164966 vim: arbitrary command execution via modeline sandbox bypass

[2:8.2.2637-26.3]
- Related: RHEL-159630 rebuild to build with exception target

[2:8.2.2637-26.2]
- remove -O0 from flags

[2:8.2.2637-26.1]
- RHEL-159630 CVE-2026-33412 vim: Vim: Arbitrary code execution via command injection in glob() function

Related CVEs

CVE-2026-35177

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_aarch64_appstream
	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_aarch64_baseos_latest
	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_aarch64_u8_baseos_patch
	vim-X11-8.2.2637-26.0.1.el9_8.5.aarch64.rpm	1d13f7cac09ea5492aa14547b8b93d7e016f61c5199167a4b6663ecd2c6a2036	-	ol9_aarch64_appstream
	vim-common-8.2.2637-26.0.1.el9_8.5.aarch64.rpm	973bd345eb0a48b1c301e0b82a6dfc7e53ecf4a9cf80fecfae103e81994bbdfc	-	ol9_aarch64_appstream
	vim-enhanced-8.2.2637-26.0.1.el9_8.5.aarch64.rpm	ec41d9c2e5a350b98052fffb4e307d25cc5cdc773c7e2751efab4fb44daf9e96	-	ol9_aarch64_appstream
	vim-filesystem-8.2.2637-26.0.1.el9_8.5.noarch.rpm	3d846e6d7c030473b6654a148290b11b81cfd375f93324b21ca9e01f3f86d1e0	-	ol9_aarch64_baseos_latest
	vim-filesystem-8.2.2637-26.0.1.el9_8.5.noarch.rpm	3d846e6d7c030473b6654a148290b11b81cfd375f93324b21ca9e01f3f86d1e0	-	ol9_aarch64_u8_baseos_patch
	vim-minimal-8.2.2637-26.0.1.el9_8.5.aarch64.rpm	6cc213452fd0f3c8379c7307c90c4b2c6a344d4c5f25c0c2e7872793f07dd1fd	-	ol9_aarch64_baseos_latest
	vim-minimal-8.2.2637-26.0.1.el9_8.5.aarch64.rpm	6cc213452fd0f3c8379c7307c90c4b2c6a344d4c5f25c0c2e7872793f07dd1fd	-	ol9_aarch64_u8_baseos_patch

Oracle Linux 9 (x86_64)	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_x86_64_appstream
	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_x86_64_baseos_latest
	vim-8.2.2637-26.0.1.el9_8.5.src.rpm	a2915fd34a7777e0b5da52d88970d34b52d6d970e50f163b4c11e8d325095830	-	ol9_x86_64_u8_baseos_patch
	vim-X11-8.2.2637-26.0.1.el9_8.5.x86_64.rpm	0ca6879e258e77bb012ba4983b5db1c85d9a7a5f87df615efbc14a90570033f7	-	ol9_x86_64_appstream
	vim-common-8.2.2637-26.0.1.el9_8.5.x86_64.rpm	0aea022bfb2bf7702fdf46d6e991b93422f970eb28c49201ffae3de0503f2f69	-	ol9_x86_64_appstream
	vim-enhanced-8.2.2637-26.0.1.el9_8.5.x86_64.rpm	cc6a0842886ff3d497bcb3c4e617783d8bdacb7c787e133c78f13c9b11db8e67	-	ol9_x86_64_appstream
	vim-filesystem-8.2.2637-26.0.1.el9_8.5.noarch.rpm	3d846e6d7c030473b6654a148290b11b81cfd375f93324b21ca9e01f3f86d1e0	-	ol9_x86_64_baseos_latest
	vim-filesystem-8.2.2637-26.0.1.el9_8.5.noarch.rpm	3d846e6d7c030473b6654a148290b11b81cfd375f93324b21ca9e01f3f86d1e0	-	ol9_x86_64_u8_baseos_patch
	vim-minimal-8.2.2637-26.0.1.el9_8.5.x86_64.rpm	d850863827c75c8c161b938dc44a57a3056fc7f8d547f52bafca3c4a2b2a927c	-	ol9_x86_64_baseos_latest
	vim-minimal-8.2.2637-26.0.1.el9_8.5.x86_64.rpm	d850863827c75c8c161b938dc44a57a3056fc7f8d547f52bafca3c4a2b2a927c	-	ol9_x86_64_u8_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691