{ "schema_version": "1.7.0", "id": "RHSA-2026:6502", "related": [], "upstream": [ "CVE-2026-25749", "CVE-2026-28417", "CVE-2026-28421", "CVE-2026-33412" ], "published": "2026-04-03T10:09:41Z", "modified": "2026-04-03T10:09:41Z", "summary": "Red Hat Security Advisory: vim security update", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H" } ], "affected": [ { "package": { "name": "vim", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-X11", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-X11" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-X11-debuginfo", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-X11-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-common", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-common" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-data", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-data" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-debuginfo", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-debugsource", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-debugsource" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-enhanced", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-enhanced" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-enhanced-debuginfo", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-enhanced-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-filesystem", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-filesystem" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-minimal", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-minimal" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "vim-minimal-debuginfo", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/vim-minimal-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "xxd", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/xxd" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "name": "xxd-debuginfo", "ecosystem": "Red Hat:enterprise_linux_eus:10.0", "purl": "pkg:rpm/redhat/xxd-debuginfo" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "2:9.1.083-5.el10_0.2" } ], "type": "ECOSYSTEM" } ] } ], "references": [ { "type": "ADVISORY", "url": "https://access.redhat.com/errata/RHSA-2026:6502" }, { "type": "ARTICLE", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437843" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443455" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443474" }, { "type": "REPORT", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450907" }, { "type": "ADVISORY", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6502.json" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2026-25749" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2026-25749" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25749" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/commit/0714b15940b245108e6e9d7aa2260dd849a26fa9" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/releases/tag/v9.1.2132" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/security/advisories/GHSA-5w93-4g67-mm43" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2026-28417" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2026-28417" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28417" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/commit/79348dbbc09332130f4c860" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/releases/tag/v9.2.0073" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/security/advisories/GHSA-m3xh-9434-g336" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2026-28421" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2026-28421" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28421" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/commit/65c1a143c331c886dc28" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/releases/tag/v9.2.0077" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/security/advisories/GHSA-r2gw-2x48-jj5p" }, { "type": "REPORT", "url": "https://access.redhat.com/security/cve/CVE-2026-33412" }, { "type": "ADVISORY", "url": "https://www.cve.org/CVERecord?id=CVE-2026-33412" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33412" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/commit/645ed6597d1ea896c712cd7ddbb6edee79577e9a" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/releases/tag/v9.2.0202" }, { "type": "ARTICLE", "url": "https://github.com/vim/vim/security/advisories/GHSA-w5jw-f54h-x46c" } ] }