ELSA-2026-8259

ULN >
Oracle Linux Errata repository >
ELSA-2026-8259

ELSA-2026-8259 - vim security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-04-15

Description

[8.2.2637-23.0.1.el9_7.2]
- Remove upstream references [Orabug: 31197557]

[2:8.2.2637-23.2]
- RHEL-155437 CVE-2026-28417 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin
- RHEL-155422 CVE-2026-28421 vim: Vim: Denial of service and information disclosure via crafted swap file
- RHEL-159629 CVE-2026-33412 vim: Vim: Arbitrary code execution via command injection in glob() function

[2:8.2.2637-23.1]
- RHEL-147940 CVE-2026-25749 vim: Heap Overflow in Vim

Related CVEs

CVE-2026-28417

CVE-2026-28421

CVE-2026-33412

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_aarch64_appstream
	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_aarch64_baseos_latest
	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_aarch64_u7_baseos_patch
	vim-X11-8.2.2637-23.0.1.el9_7.2.aarch64.rpm	b29c678fe647443c18a333c8ab787db94df397cc7b0d8488237f95d5cb40f676	-	ol9_aarch64_appstream
	vim-common-8.2.2637-23.0.1.el9_7.2.aarch64.rpm	50a33c58b0c292bf9322a6082ec7e5f697bc53ce51222d857a69b29a625d3b3f	-	ol9_aarch64_appstream
	vim-enhanced-8.2.2637-23.0.1.el9_7.2.aarch64.rpm	8c165af4f32140388fffdeb8e98c1ed1f8d1753e92524e74967844869464daa1	-	ol9_aarch64_appstream
	vim-filesystem-8.2.2637-23.0.1.el9_7.2.noarch.rpm	d57f74bf7c9541914c2de749913fd0ba71911926b9986af86c90dc6a202085f4	-	ol9_aarch64_baseos_latest
	vim-filesystem-8.2.2637-23.0.1.el9_7.2.noarch.rpm	d57f74bf7c9541914c2de749913fd0ba71911926b9986af86c90dc6a202085f4	-	ol9_aarch64_u7_baseos_patch
	vim-minimal-8.2.2637-23.0.1.el9_7.2.aarch64.rpm	ece4f9d47073000f05148b16cbd5c19274fda289b9ad314e86f82a9ec4c2bbb4	-	ol9_aarch64_baseos_latest
	vim-minimal-8.2.2637-23.0.1.el9_7.2.aarch64.rpm	ece4f9d47073000f05148b16cbd5c19274fda289b9ad314e86f82a9ec4c2bbb4	-	ol9_aarch64_u7_baseos_patch

Oracle Linux 9 (x86_64)	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_x86_64_appstream
	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_x86_64_baseos_latest
	vim-8.2.2637-23.0.1.el9_7.2.src.rpm	dc4966ccf9fb416837b7b472f5434aaf068bd617171995b9867e14df0db2352c	-	ol9_x86_64_u7_baseos_patch
	vim-X11-8.2.2637-23.0.1.el9_7.2.x86_64.rpm	1acfce8dc5b226427165a880030ea1d5039bf61c500547668b518173932f5b2c	-	ol9_x86_64_appstream
	vim-common-8.2.2637-23.0.1.el9_7.2.x86_64.rpm	b051dc727698bb729f37b93393f9a466fe5d13206d1fe19fc0abcb974bf728c4	-	ol9_x86_64_appstream
	vim-enhanced-8.2.2637-23.0.1.el9_7.2.x86_64.rpm	e3e212ddfc8e746c4d0083e956ce4ebef5cee3827d475d688b202ececa67e2be	-	ol9_x86_64_appstream
	vim-filesystem-8.2.2637-23.0.1.el9_7.2.noarch.rpm	d57f74bf7c9541914c2de749913fd0ba71911926b9986af86c90dc6a202085f4	-	ol9_x86_64_baseos_latest
	vim-filesystem-8.2.2637-23.0.1.el9_7.2.noarch.rpm	d57f74bf7c9541914c2de749913fd0ba71911926b9986af86c90dc6a202085f4	-	ol9_x86_64_u7_baseos_patch
	vim-minimal-8.2.2637-23.0.1.el9_7.2.x86_64.rpm	9368ca8d65178109f832ee8c75427265d8a757aef5d590f012cf5d78a2fff597	-	ol9_x86_64_baseos_latest
	vim-minimal-8.2.2637-23.0.1.el9_7.2.x86_64.rpm	9368ca8d65178109f832ee8c75427265d8a757aef5d590f012cf5d78a2fff597	-	ol9_x86_64_u7_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691