Your message dated Sat, 21 Mar 2026 12:06:08 +0000
with message-id <[email protected]>
and subject line Bug#1130658: fixed in vim 2:9.2.0218-1
has caused the Debian Bug report #1130658,
regarding vim: CVE-2026-32249
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1130658: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1130658
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: vim
Version: 2:9.2.0136-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerability was published for vim.
CVE-2026-32249[0]:
| Vim is an open source, command line text editor. From 9.1.0011 to
| before 9.2.0137, Vim's NFA regex compiler, when encountering a
| collection containing a combining character as the endpoint of a
| character range (e.g. [0-0\u05bb]), incorrectly emits the composing
| bytes of that character as separate NFA states. This corrupts the
| NFA postfix stack, resulting in NFA_START_COLL having a NULL out1
| pointer. When nfa_max_width() subsequently traverses the compiled
| NFA to estimate match width for the look-behind assertion, it
| dereferences state->out1->out without a NULL check, causing a
| segmentation fault. This vulnerability is fixed in 9.2.0137.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2026-32249
https://www.cve.org/CVERecord?id=CVE-2026-32249
[1] https://github.com/vim/vim/security/advisories/GHSA-9phh-423r-778r
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: vim
Source-Version: 2:9.2.0218-1
Done: James McCoy <[email protected]>
We believe that the bug you reported is fixed in the latest version of
vim, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
James McCoy <[email protected]> (supplier of updated vim package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 21 Mar 2026 07:38:26 -0400
Source: vim
Architecture: source
Version: 2:9.2.0218-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Vim Maintainers <[email protected]>
Changed-By: James McCoy <[email protected]>
Closes: 1130658
Changes:
vim (2:9.2.0218-1) unstable; urgency=medium
.
* New upstream tag
+ 9.2.0168: Fix invalid pointer casting in string_convert(), causing test
failures on big-endian systems
+ Security fixes
- 9.2.0137: crash when composing character as end of range in a regexp
collection (Closes: #1130658, CVE-2026-32249)
- 9.2.0202: command injection via newline in glob(), CVE-2026-33412
Checksums-Sha1:
86dade430b24e154ee4c96e9e1cea4630c6026fa 3198 vim_9.2.0218-1.dsc
d49066aa13bdac377d8cc2e1115ca1851675496c 13348976 vim_9.2.0218.orig.tar.xz
eda09fb5647a62244c82c99fa06468289ab5feaf 163992 vim_9.2.0218-1.debian.tar.xz
9e852350cb62f999e8989862a59e79cccf58e2b2 27423684 vim_9.2.0218-1.git.tar.xz
81a4ce613e2c1d84891c2680deadfadcef01e60f 17329 vim_9.2.0218-1_source.buildinfo
Checksums-Sha256:
41ec4140aa3c7aea9e8cb60902d8915d60bc9109365615c4f8fca29df6d280e2 3198
vim_9.2.0218-1.dsc
47c340937294e3fbece77303f49886c87298e234bfc236f7beec1cc2de1896f1 13348976
vim_9.2.0218.orig.tar.xz
78bf44f10652fc36f15ab933ee8c5274ad3c7f6502801a1866a9175ea06a8590 163992
vim_9.2.0218-1.debian.tar.xz
0d0462863acb45dd6ce952bde912869500858ca0154b7e926e18b70a871ce45c 27423684
vim_9.2.0218-1.git.tar.xz
d2d6730b49d253da8795b16060c262c3868bda7a2ae5bf2e7eafceb8f7416c6b 17329
vim_9.2.0218-1_source.buildinfo
Files:
f9e9f123d3bd141bfcfa03a81e1515b9 3198 editors optional vim_9.2.0218-1.dsc
0b667905ae69efe09f9bef241deeab81 13348976 editors optional
vim_9.2.0218.orig.tar.xz
04297ce66831c955bcd2984a02449112 163992 editors optional
vim_9.2.0218-1.debian.tar.xz
eda984cd9a85ef637bc0bb88db8edeb7 27423684 editors None
vim_9.2.0218-1.git.tar.xz
76a5c39ef05d19ad34dba8bbc236ea12 17329 editors optional
vim_9.2.0218-1_source.buildinfo
Git-Tag-Info: tag=4d840e03ec58e3bcd11938d5cd3a84416bbffb78
fp=91bfbf4d6956bd5df7b72d23dfe691ae331ba3db
Git-Tag-Tagger: James McCoy <[email protected]>
-----BEGIN PGP SIGNATURE-----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=0VJo
-----END PGP SIGNATURE-----
pgpGXGLpim9mz.pgp
Description: PGP signature
--- End Message ---
