Security update for vim SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:0724-1 Final 1 1 2025-02-26T13:30:28Z current 2025-02-26T13:30:28Z 2025-02-26T13:30:28Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for vim This update for vim fixes the following issues: Update to version 9.1.1101: - CVE-2024-43790: possible out-of-bounds read when performing a search command (bsc#1229685). - CVE-2024-43802: heap buffer overflow due to incorrect flushing of the typeahead buffer (bsc#1229822). - CVE-2024-45306: heap buffer overflow when cursor position is invalid (bsc#1230078). - CVE-2025-22134: heap buffer overflow when switching to other buffers using the :all command with active visual mode (bsc#1235695). - CVE-2025-24014: NULL pointer dereference may lead to segmentation fault when in silent Ex mode (bsc#1236151). - CVE-2025-1215: memory corruption when manipulating the --log argument (bsc#1237137). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/sle-micro-rancher/5.2:latest-2025-724,Container suse/sle-micro-rancher/5.3:latest-2025-724,Container suse/sle-micro-rancher/5.4:latest-2025-724,Container suse/sle-micro/5.1/toolbox:latest-2025-724,Container suse/sle-micro/5.2/toolbox:latest-2025-724,Container suse/sle-micro/5.3/toolbox:latest-2025-724,Container suse/sle-micro/5.4/toolbox:latest-2025-724,Image SLES15-SP3-SAP-Azure-LI-BYOS-Production-2025-724,Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production-2025-724,Image SLES15-SP4-Micro-5-3-2025-724,Image SLES15-SP4-Micro-5-3-BYOS-2025-724,Image SLES15-SP4-Micro-5-3-BYOS-EC2-2025-724,Image SLES15-SP4-Micro-5-3-EC2-2025-724,Image SLES15-SP4-Micro-5-4-2025-724,Image SLES15-SP4-Micro-5-4-BYOS-2025-724,Image SLES15-SP4-Micro-5-4-BYOS-EC2-2025-724,Image SLES15-SP4-Micro-5-4-EC2-2025-724,SUSE-2025-724,SUSE-SLE-Micro-5.3-2025-724,SUSE-SLE-Micro-5.4-2025-724,SUSE-SUSE-MicroOS-5.1-2025-724,SUSE-SUSE-MicroOS-5.2-2025-724 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ Link for SUSE-SU-2025:0724-1 https://lists.suse.com/pipermail/sle-security-updates/2025-February/020447.html E-Mail link for SUSE-SU-2025:0724-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1229685 SUSE Bug 1229685 https://bugzilla.suse.com/1229822 SUSE Bug 1229822 https://bugzilla.suse.com/1230078 SUSE Bug 1230078 https://bugzilla.suse.com/1235695 SUSE Bug 1235695 https://bugzilla.suse.com/1236151 SUSE Bug 1236151 https://bugzilla.suse.com/1237137 SUSE Bug 1237137 https://www.suse.com/security/cve/CVE-2024-43790/ SUSE CVE CVE-2024-43790 page https://www.suse.com/security/cve/CVE-2024-43802/ SUSE CVE CVE-2024-43802 page https://www.suse.com/security/cve/CVE-2024-45306/ SUSE CVE CVE-2024-45306 page https://www.suse.com/security/cve/CVE-2025-1215/ SUSE CVE CVE-2025-1215 page https://www.suse.com/security/cve/CVE-2025-22134/ SUSE CVE CVE-2025-22134 page https://www.suse.com/security/cve/CVE-2025-24014/ SUSE CVE CVE-2025-24014 page Container suse/sle-micro-rancher/5.2:latest Container suse/sle-micro-rancher/5.3:latest Container suse/sle-micro-rancher/5.4:latest Container suse/sle-micro/5.1/toolbox:latest Container suse/sle-micro/5.2/toolbox:latest Container suse/sle-micro/5.3/toolbox:latest Container suse/sle-micro/5.4/toolbox:latest Image SLES15-SP3-SAP-Azure-LI-BYOS-Production Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production Image SLES15-SP4-Micro-5-3 Image SLES15-SP4-Micro-5-3-BYOS Image SLES15-SP4-Micro-5-3-BYOS-EC2 Image SLES15-SP4-Micro-5-3-EC2 Image SLES15-SP4-Micro-5-4 Image SLES15-SP4-Micro-5-4-BYOS Image SLES15-SP4-Micro-5-4-BYOS-EC2 Image SLES15-SP4-Micro-5-4-EC2 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 vim-data-common-9.1.1101-150000.5.69.1 vim-small-9.1.1101-150000.5.69.1 vim-9.1.1101-150000.5.69.1 xxd-9.1.1101-150000.5.69.1 gvim-9.1.1101-150000.5.69.1 vim-data-9.1.1101-150000.5.69.1 vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.2:latest vim-small-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.2:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.3:latest vim-small-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.3:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.4:latest vim-small-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro-rancher/5.4:latest vim-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.1/toolbox:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.1/toolbox:latest xxd-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.1/toolbox:latest vim-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.2/toolbox:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.2/toolbox:latest xxd-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.2/toolbox:latest vim-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.3/toolbox:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.3/toolbox:latest xxd-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.3/toolbox:latest vim-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.4/toolbox:latest vim-data-common-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.4/toolbox:latest xxd-9.1.1101-150000.5.69.1 as a component of Container suse/sle-micro/5.4/toolbox:latest vim-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-LI-BYOS-Production vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-LI-BYOS-Production xxd-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-LI-BYOS-Production vim-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production xxd-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3 vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-BYOS vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-BYOS vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-BYOS-EC2 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-BYOS-EC2 vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-EC2 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-3-EC2 vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4 vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-BYOS vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-BYOS vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-BYOS-EC2 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-BYOS-EC2 vim-data-common-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-EC2 vim-small-9.1.1101-150000.5.69.1 as a component of Image SLES15-SP4-Micro-5-4-EC2 vim-data-common-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.1 vim-small-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.1 xxd-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.1 vim-data-common-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.2 vim-small-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.2 xxd-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.2 vim-data-common-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.3 vim-small-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.3 xxd-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.3 vim-data-common-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.4 vim-small-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.4 xxd-9.1.1101-150000.5.69.1 as a component of SUSE Linux Enterprise Micro 5.4 Vim is an open source command line text editor. When performing a search and displaying the search-count message is disabled (:set shm+=S), the search pattern is displayed at the bottom of the screen in a buffer (msgbuf). When right-left mode (:set rl) is enabled, the search pattern is reversed. This happens by allocating a new buffer. If the search pattern contains some ASCII NUL characters, the buffer allocated will be smaller than the original allocated buffer (because for allocating the reversed buffer, the strlen() function is called, which only counts until it notices an ASCII NUL byte ) and thus the original length indicator is wrong. This causes an overflow when accessing characters inside the msgbuf by the previously (now wrong) length of the msgbuf. The issue has been fixed as of Vim patch v9.1.0689. CVE-2024-43790 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2024-43790.html CVE-2024-43790 https://bugzilla.suse.com/1229685 SUSE Bug 1229685 Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead buffer but does not check whether there is enough space left in the buffer to handle the next characters. So this may lead to the tb_off position within the typebuf variable to point outside of the valid buffer size, which can then later lead to a heap-buffer overflow in e.g. ins_typebuf(). Therefore, when flushing the typeahead buffer, check if there is enough space left before advancing the off position. If not, fall back to flush current typebuf contents. It's not quite clear yet, what can lead to this situation. It seems to happen when error messages occur (which will cause Vim to flush the typeahead buffer) in comnination with several long mappgins and so it may eventually move the off position out of a valid buffer size. Impact is low since it is not easily reproducible and requires to have several mappings active and run into some error condition. But when this happens, this will cause a crash. The issue has been fixed as of Vim patch v9.1.0697. Users are advised to upgrade. There are no known workarounds for this issue. CVE-2024-43802 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2024-43802.html CVE-2024-43802 https://bugzilla.suse.com/1229822 SUSE Bug 1229822 Vim is an open source, command line text editor. Patch v9.1.0038 optimized how the cursor position is calculated and removed a loop, that verified that the cursor position always points inside a line and does not become invalid by pointing beyond the end of a line. Back then we assumed this loop is unnecessary. However, this change made it possible that the cursor position stays invalid and points beyond the end of a line, which would eventually cause a heap-buffer-overflow when trying to access the line pointer at the specified cursor position. It's not quite clear yet, what can lead to this situation that the cursor points to an invalid position. That's why patch v9.1.0707 does not include a test case. The only observed impact has been a program crash. This issue has been addressed in with the patch v9.1.0707. All users are advised to upgrade. CVE-2024-45306 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2024-45306.html CVE-2024-45306 https://bugzilla.suse.com/1230078 SUSE Bug 1230078 A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability affects unknown code of the file src/main.c. The manipulation of the argument --log leads to memory corruption. It is possible to launch the attack on the local host. Upgrading to version 9.1.1097 is able to address this issue. The patch is identified as c5654b84480822817bb7b69ebc97c174c91185e9. It is recommended to upgrade the affected component. CVE-2025-1215 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2025-1215.html CVE-2025-1215 https://bugzilla.suse.com/1237137 SUSE Bug 1237137 When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctly reset the visual mode before opening other windows and buffers and therefore fix this bug. In addition it does verify that it won't try to access a position if the position is greater than the corresponding buffer line. Impact is medium since the user must have switched on visual mode when executing the :all ex command. The Vim project would like to thank github user gandalf4a for reporting this issue. The issue has been fixed as of Vim patch v9.1.1003 CVE-2025-22134 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2025-22134.html CVE-2025-22134 https://bugzilla.suse.com/1235695 SUSE Bug 1235695 Vim is an open source, command line text editor. A segmentation fault was found in Vim before 9.1.1043. In silent Ex mode (-s -e), Vim typically doesn't show a screen and just operates silently in batch mode. However, it is still possible to trigger the function that handles the scrolling of a gui version of Vim by feeding some binary characters to Vim. The function that handles the scrolling however may be triggering a redraw, which will access the ScreenLines pointer, even so this variable hasn't been allocated (since there is no screen). This vulnerability is fixed in 9.1.1043. CVE-2025-24014 Container suse/sle-micro-rancher/5.2:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.2:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.3:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro-rancher/5.4:latest:vim-small-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.1/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.2/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.3/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:vim-data-common-9.1.1101-150000.5.69.1 Container suse/sle-micro/5.4/toolbox:latest:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:xxd-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-3:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-BYOS:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4-EC2:vim-small-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-data-common-9.1.1101-150000.5.69.1 Image SLES15-SP4-Micro-5-4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.1:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.2:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.3:xxd-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-data-common-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:vim-small-9.1.1101-150000.5.69.1 SUSE Linux Enterprise Micro 5.4:xxd-9.1.1101-150000.5.69.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250724-1/ https://www.suse.com/security/cve/CVE-2025-24014.html CVE-2025-24014 https://bugzilla.suse.com/1236151 SUSE Bug 1236151