[Git][security-tracker-team/security-tracker][master] Add CVE-2026-34714/vim
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Mon Mar 30 20:30:52 BST 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
380bf19b by Salvatore Bonaccorso at 2026-03-30T21:30:17+02:00
Add CVE-2026-34714/vim
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -42,7 +42,9 @@ CVE-2026-3502 (TrueConf Client downloads application update code and applies it
CVE-2026-3321 (A vulnerability of authorization bypass through user-controlled key in ...)
TODO: check
CVE-2026-34714 (Vim before 9.2.0272 allows code execution that happens immediately upo ...)
- TODO: check
+ - vim <unfixed>
+ NOTE: https://github.com/vim/vim/security/advisories/GHSA-2gmj-rpqf-pxvh
+ NOTE: Fixed by: https://github.com/vim/vim/commit/664701eb7576edb7c7c7d9f2d600815ec1f43459 (v9.2.0272)
CVE-2026-34472 (Unauthenticated credential disclosure in the wizard interface in ZTE Z ...)
TODO: check
CVE-2026-33643 (SQL Injection vulnerability in SchemaHero 0.23.0 via the column parame ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/380bf19bf76fe0a1c3c1c13356e2a9afe101a712
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/380bf19bf76fe0a1c3c1c13356e2a9afe101a712
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260330/a24acf9b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list