openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2025-64512 Upstream summary: Pdfminer.six is a community maintained fork of the original PDFMiner, a tool for extracting information from PDF documents. Prior to version […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory GHSA-c8cc-phh7-xmxr (see also SUSE bugzilla) Related CVEs: CVE-2025-62168 CVE-2025-59362 CVE-2024-37894 CVE-2024-33427 Upstream summary: Squid is a caching proxy for the Web. In Squid versions prior to 7.2, a failure to redact […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:19927 (see also SUSE bugzilla) Related CVEs: CVE-2025-31133 CVE-2025-52565 CVE-2025-52881 CVE-2024-45310 Upstream summary: runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:20892-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-11731 CVE-2024-55549 CVE-2025-24855 CVE-2023-40403 Upstream summary: A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT <func:result> elements during stylesheet parsing. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:19512 (see also SUSE bugzilla) Related CVEs: CVE-2025-61919 CVE-2025-27610 CVE-2025-61780 CVE-2025-27111 CVE-2025-25184 Upstream summary: Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Request#POST` reads […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1757-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2015-3629 CVE-2015-3630 CVE-2019-14271 CVE-2020-15257  +12 more Upstream summary: Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3957-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-40175 CVE-2024-21647 CVE-2024-45614 Upstream summary: Puma is a Ruby/Rack web server built for parallelism. Prior to versions 6.3.1 and 5.6.7, puma exhibited incorrect behavior […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:20961-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-5791 Upstream summary: A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:17428 (see also SUSE bugzilla) Related CVEs: CVE-2025-41244 CVE-2025-22247 Upstream summary: VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:17675 (see also SUSE bugzilla) Related CVEs: CVE-2025-9900 CVE-2025-8176 CVE-2024-13978 CVE-2025-8851 CVE-2025-8177 CVE-2023-25435 CVE-2023-52356 CVE-2024-7006  +3 more Upstream summary: A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, […]