[Apollo] Advisories Statistics light light Login

RLSA-2026:6915

Security Mirrored from RHSA-2026:6915
Issued at: 2026-04-09
Updated at: 2026-04-10

Synopsis

Important: vim security update



Description

Vim (Vi IMproved) is an updated and improved version of the vi editor.

Security Fix(es):

* vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin (CVE-2026-28417)

* vim: Vim: Denial of service and information disclosure via crafted swap file (CVE-2026-28421)

* vim: Vim: Arbitrary code execution via command injection in glob() function (CVE-2026-33412)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2443455 2443474 2450907

CVEs

CVE-2026-28417 CVE-2026-28421 CVE-2026-33412

Affected packages

Rocky Linux 8 x86_64 - BaseOS

vim-2:8.0.1763-22.el8_10.1.src.rpm vim-debuginfo-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-debugsource-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-minimal-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-minimal-debuginfo-2:8.0.1763-22.el8_10.1.x86_64.rpm

Rocky Linux 8 aarch64 - BaseOS

vim-2:8.0.1763-22.el8_10.1.src.rpm vim-debuginfo-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-debugsource-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-minimal-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-minimal-debuginfo-2:8.0.1763-22.el8_10.1.aarch64.rpm

Rocky Linux 8 aarch64 - AppStream

vim-common-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-common-debuginfo-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-enhanced-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-enhanced-debuginfo-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-filesystem-2:8.0.1763-22.el8_10.1.noarch.rpm vim-X11-2:8.0.1763-22.el8_10.1.aarch64.rpm vim-X11-debuginfo-2:8.0.1763-22.el8_10.1.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

vim-common-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-common-debuginfo-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-enhanced-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-enhanced-debuginfo-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-filesystem-2:8.0.1763-22.el8_10.1.noarch.rpm vim-X11-2:8.0.1763-22.el8_10.1.x86_64.rpm vim-X11-debuginfo-2:8.0.1763-22.el8_10.1.x86_64.rpm