Buffer Overflow in Vim's Terminal Functionality Affects Open Source Editor
CVE-2026-52859
What is CVE-2026-52859?
Vim, a widely used open source command line text editor, contains a buffer overflow vulnerability in its terminal functionality due to improper handling of screen cell characters. Specifically, the update_snapshot() function in src/terminal.c fails to enforce a boundary check while copying the visible terminal screen to the scrollback buffer. This oversight can lead to crashes as the loop traverses an array without a terminating NUL, especially when the number of characters exceeds the predefined maximum. Attackers can exploit this vulnerability without relying on Vim scripting, merely by rendering specific output within a terminal window. The issue was addressed in version 9.2.0565, highlighting the importance of keeping software up to date to mitigate such security risks.
Affected Version(s)
vim < 9.2.0565
