Amazon Linux AMI Security Advisory: ALAS-2016-779
Advisory Release Date: 2016-12-19 16:30 Pacific
A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim. (modelines are disabled by default for root, and enabled by default for other users.)
Run yum update vim to update your system.