StackPatch is liveSee product

Back to CVE digest
Ubuntu USN · USN-8246-1

Vim vulnerabilities

Published: Thu, 07 May 2026 14:58

CVE-2026-41411CVE-2026-39881CVE-2026-35177

Summary

Several security issues were fixed in Vim.

Details

Michał Majchrowicz discovered that Vim’s zip plugin could overwrite arbitrary files. An attacker could possibly use this issue to delete sensitive data or execute arbitrary code. This issue only affected Ubuntu 26.04 LTS. (CVE-2026-35177) It was discovered that Vim’s netbeans interface did not properly sanitize certain strings. An attacker could possibly use this issue to execute arbitrary commands. This issue only affected Ubuntu 26.04 LTS. (CVE-2026-39881) It was discovered that Vim did not properly handle backticks in tag filenames. An attacker could possibly use this issue to execute arbitrary commands. (CVE-2026-41411)

Recommended actions per Ubuntu release

StackPatch playbook auto-generated per release codename and per affected package.

Ubuntu jammy

  • vim2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-athena2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-athena

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-common2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-doc2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gtk2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gtk

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gtk32:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gtk3

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gui-common2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gui-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-nox2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-nox

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-runtime2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-runtime

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-tiny2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-tiny

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • xxd2:8.2.3995-1ubuntu2.29apt_upgrade

    Standard apt upgrade. Install 2:8.2.3995-1ubuntu2.29 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y xxd

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Ubuntu noble

  • vim2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-athena2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-athena

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-common2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-doc2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gtk32:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gtk3

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gui-common2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gui-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-motif2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-motif

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-nox2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-nox

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-runtime2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-runtime

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-tiny2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-tiny

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • xxd2:9.1.0016-1ubuntu7.13apt_upgrade

    Standard apt upgrade. Install 2:9.1.0016-1ubuntu7.13 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y xxd

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Ubuntu questing

  • vim2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-athena2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-athena

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-common2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-doc2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gtk32:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gtk3

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gui-common2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gui-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-motif2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-motif

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-nox2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-nox

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-runtime2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-runtime

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-tiny2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-tiny

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • xxd2:9.1.0967-1ubuntu6.4apt_upgrade

    Standard apt upgrade. Install 2:9.1.0967-1ubuntu6.4 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y xxd

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Ubuntu resolute

  • vim2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-common2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-doc2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gtk32:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gtk3

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-gui-common2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-gui-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-motif2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-motif

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-nox2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-nox

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-runtime2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-runtime

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • vim-tiny2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y vim-tiny

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • xxd2:9.1.2141-1ubuntu4.1apt_upgrade

    Standard apt upgrade. Install 2:9.1.2141-1ubuntu4.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y xxd

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Are YOU affected by USN-8246-1?

5-second check on your actual server. Reads /etc/os-release, uname -r, and dpkg-query; matches against the live USN + Debian Security Tracker feeds; tells you whether USN-8246-1 (and any other live CVE) applies. Anonymous, no signup.

curl https://mindsparkstack.com/scan.sh | bash
Form-based quickscan Read the bash source first
Want this automated for your servers?

StackPatch runs this match against YOUR installed packages every hour

Free 1-server / $99 lifetime founder seat (50 only) / $19+/mo monthly. Indie pricing.

Buy lifetime →See StackPatch →Live audit log →