CVE-2026-28422

Published February 27th, 2026

View on NVD ↗

CVSS v3

2.2

LOW

CVSS v2

N/A

Affected

PROJECT

Description

Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in `build_stl_str_hl()` when rendering a statusline with a multi-byte fill character on a very wide terminal. Version 9.2.0078 patches the issue.

vim/vim

The official Vim repository

GitHub

40.6K