ALSA-2026:11389

[ALSA-2026:11389] Important: vim security update

Type:

security

Severity:

important

Release date:

2026-04-29

Description:

Vim (Vi IMproved) is an updated and improved version of the vi editor.  

Security Fix(es):  

  * vim: arbitrary command execution via modeline sandbox bypass (CVE-2026-34982)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

RHSA-2026:11389
CVE-2026-34982
ALSA-2026:11389

Updated packages listed below:

Architecture	Package	Checksum
noarch	vim-data-9.1.083-6.el10_1.4.noarch.rpm	1ef5d7ee05f8e0ef3991ba51537b081c90ac11ef018edc69324a44c46e7d4e1e
noarch	vim-filesystem-9.1.083-6.el10_1.4.noarch.rpm	aef525849e463b52ffaacdfaada94a12843215f0cff61d5dcaa4574699e08955

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.