[El-errata] ELSA-2025-17715 Moderate: Oracle Linux 8 vim security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Oct 14 14:51:28 UTC 2025
Oracle Linux Security Advisory ELSA-2025-17715
http://linux.oracle.com/errata/ELSA-2025-17715.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
vim-X11-8.0.1763-21.0.1.el8_10.x86_64.rpm
vim-common-8.0.1763-21.0.1.el8_10.x86_64.rpm
vim-enhanced-8.0.1763-21.0.1.el8_10.x86_64.rpm
vim-filesystem-8.0.1763-21.0.1.el8_10.noarch.rpm
vim-minimal-8.0.1763-21.0.1.el8_10.x86_64.rpm
aarch64:
vim-X11-8.0.1763-21.0.1.el8_10.aarch64.rpm
vim-common-8.0.1763-21.0.1.el8_10.aarch64.rpm
vim-enhanced-8.0.1763-21.0.1.el8_10.aarch64.rpm
vim-filesystem-8.0.1763-21.0.1.el8_10.noarch.rpm
vim-minimal-8.0.1763-21.0.1.el8_10.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/vim-8.0.1763-21.0.1.el8_10.src.rpm
Related CVEs:
CVE-2025-53905
CVE-2025-53906
Description of changes:
[8.0.1763-21.0.1]
- Remove upstream references [Orabug: 31197557]
- Added glibc-gconv-extra to common requires to provide ISO-8859-2 [Orabug: 34114984]
[2:8.0.1763-21]
- RHEL-112003 CVE-2025-53905 vim: Vim path traversial
- RHEL-112007 CVE-2025-53906 vim: Vim path traversal
[2:8.0.1763-20]
- fix issue reported by covscan
[2:8.0.1763-20]
- CVE-2022-1785 vim: Out-of-bounds Write
- CVE-2022-1897 vim: out-of-bounds write in vim_regsub_both() in regexp.c
- CVE-2022-1927 vim: buffer over-read in utf_ptr2char() in mbyte.c
[2:8.0.1763-20]
- CVE-2022-1621 vim: heap buffer overflow
- CVE-2022-1629 vim: buffer over-read
[2:8.0.1763-20]
- CVE-2022-1154 vim: use after free in utf_ptr2char
More information about the El-errata
mailing list