CVE-2026-57456
Publication date 25 June 2026
Last updated 2 July 2026
Ubuntu priority
Cvss 3 Severity Score
Description
Vim is an open source, command line text editor. Prior to 9.2.0699, Vim's Python omni-completion (runtime/autoload/python3complete.vim and the legacy pythoncomplete.vim) executes reconstructed function and class definitions from the current buffer with exec() as part of populating the completion dictionary. When reconstructing that source, each scope's docstring is inserted verbatim between triple quotes with no escaping, so a hostile buffer can break out of the triple-quoted literal and execute attacker-controlled Python during omni-completion. This vulnerability is fixed in 9.2.0699.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| vim | 26.04 LTS resolute |
Fixed 2:9.1.2141-1ubuntu4.6
|
| 25.10 questing |
Fixed 2:9.1.0967-1ubuntu6.8
|
|
| 24.04 LTS noble |
Fixed 2:9.1.0016-1ubuntu7.17
|
|
| 22.04 LTS jammy |
Fixed 2:8.2.3995-1ubuntu2.33
|
|
| 20.04 LTS focal |
Fixed 2:8.1.2269-1ubuntu5.32+esm9
|
|
| 18.04 LTS bionic |
Fixed 2:8.0.1453-1ubuntu1.13+esm21
|
|
| 16.04 LTS xenial |
Fixed 2:7.4.1689-3ubuntu1.5+esm36
|
|
| 14.04 LTS trusty |
Fixed 2:7.4.052-1ubuntu3.1+esm30
|
Get expanded security coverage with Ubuntu Pro
Reduce your average CVE exposure time from 98 days to 1 day with expanded CVE patching, ten-years security maintenance and optional support for the full stack of open-source applications. Free for personal use.
Get Ubuntu Pro 30-day free trialSeverity score breakdown
CVSS version:
Base score
8.4 · High
Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Base score
7.8 · High
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References
Related Ubuntu Security Notices (USN)
- USN-8500-1
- Vim vulnerabilities
- 2 July 2026