[USN-8213-1] Vim vulnerabilities

========================================================================== Ubuntu Security Notice USN-8213-1 April 27, 2026 vim vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in Vim. Software Description: - vim: Vi IMproved - enhanced vi editor Details: Michał Majchrowicz discovered that Vim's zip plugin could overwrite arbitrary files. An attacker could possibly use this issue to delete sensitive data or execute arbitrary code. This issue only affected Ubuntu 24.04 LTS and Ubuntu 25.10. (CVE-2026-35177) It was discovered that Vim's netbeans interface did not properly sanitize certain strings. An attacker could possibly use this issue to execute arbitrary commands. (CVE-2026-39881) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.10 vim 2:9.1.0967-1ubuntu6.3 vim-athena 2:9.1.0967-1ubuntu6.3 vim-common 2:9.1.0967-1ubuntu6.3 vim-gtk3 2:9.1.0967-1ubuntu6.3 vim-gui-common 2:9.1.0967-1ubuntu6.3 vim-motif 2:9.1.0967-1ubuntu6.3 vim-nox 2:9.1.0967-1ubuntu6.3 vim-runtime 2:9.1.0967-1ubuntu6.3 vim-tiny 2:9.1.0967-1ubuntu6.3 Ubuntu 24.04 LTS vim 2:9.1.0016-1ubuntu7.12 vim-athena 2:9.1.0016-1ubuntu7.12 vim-common 2:9.1.0016-1ubuntu7.12 vim-gtk3 2:9.1.0016-1ubuntu7.12 vim-gui-common 2:9.1.0016-1ubuntu7.12 vim-motif 2:9.1.0016-1ubuntu7.12 vim-nox 2:9.1.0016-1ubuntu7.12 vim-runtime 2:9.1.0016-1ubuntu7.12 vim-tiny 2:9.1.0016-1ubuntu7.12 Ubuntu 22.04 LTS vim 2:8.2.3995-1ubuntu2.28 vim-athena 2:8.2.3995-1ubuntu2.28 vim-common 2:8.2.3995-1ubuntu2.28 vim-gtk 2:8.2.3995-1ubuntu2.28 vim-gtk3 2:8.2.3995-1ubuntu2.28 vim-gui-common 2:8.2.3995-1ubuntu2.28 vim-nox 2:8.2.3995-1ubuntu2.28 vim-runtime 2:8.2.3995-1ubuntu2.28 vim-tiny 2:8.2.3995-1ubuntu2.28 Ubuntu 20.04 LTS vim 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-athena 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-common 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-gtk 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-gtk3 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-gui-common 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-nox 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-runtime 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro vim-tiny 2:8.1.2269-1ubuntu5.32+esm4 Available with Ubuntu Pro Ubuntu 18.04 LTS vim 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-athena 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-common 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-gnome 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-gtk 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-gtk3 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-gui-common 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-nox 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-runtime 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro vim-tiny 2:8.0.1453-1ubuntu1.13+esm16 Available with Ubuntu Pro Ubuntu 16.04 LTS vim 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-athena 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-athena-py2 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-common 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gnome 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gnome-py2 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gtk 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gtk-py2 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gtk3 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gtk3-py2 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-gui-common 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-nox 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-nox-py2 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-runtime 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro vim-tiny 2:7.4.1689-3ubuntu1.5+esm31 Available with Ubuntu Pro Ubuntu 14.04 LTS vim 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-athena 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-common 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-gnome 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-gtk 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-gui-common 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-lesstif 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-nox 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-runtime 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro vim-tiny 2:7.4.052-1ubuntu3.1+esm25 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8213-1 CVE-2026-35177, CVE-2026-39881 Package Information: https://launchpad.net/ubuntu/+source/vim/2:9.1.0967-1ubuntu6.3 https://launchpad.net/ubuntu/+source/vim/2:9.1.0016-1ubuntu7.12 https://launchpad.net/ubuntu/+source/vim/2:8.2.3995-1ubuntu2.28