openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:13935 (see also SUSE bugzilla) Related CVEs: CVE-2025-4674 CVE-2025-47906 CVE-2025-47907 CVE-2025-0913 CVE-2025-4673 CVE-2025-22871 Upstream summary: The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2025-48172 Upstream summary: CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c _chm_decompress_block integer overflow. There is a resultant heap-based […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:21977 (see also SUSE bugzilla) Related CVEs: CVE-2025-5372 CVE-2026-3731 CVE-2026-0964 CVE-2026-0966 CVE-2025-8114 CVE-2025-4877 CVE-2025-4878 CVE-2025-5318  +4 more Upstream summary: A flaw was found in libssh versions built with OpenSSL versions older […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02119-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-20260 CVE-2023-20197 CVE-2024-20380 CVE-2024-20505 CVE-2026-20031 CVE-2025-20234 CVE-2025-20128 CVE-2024-20506  +1 more Upstream summary: A vulnerability in the PDF scanning processes of ClamAV could allow an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15194-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-46807 CVE-2020-28935 CVE-2025-46806 Upstream summary: A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10110 (see also SUSE bugzilla) Related CVEs: CVE-2025-32462 CVE-2025-32463 Upstream summary: Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15167-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-3155 Upstream summary: A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:14177 (see also SUSE bugzilla) Related CVEs: CVE-2025-48976 Upstream summary: Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:14130 (see also SUSE bugzilla) Related CVEs: CVE-2025-5914 CVE-2024-48958 CVE-2024-48957 CVE-2024-20696 CVE-2024-20697 CVE-2025-5916 CVE-2025-5915 CVE-2025-5917  +3 more Upstream summary: A vulnerability has been identified in the libarchive library, specifically within the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:8837 (see also SUSE bugzilla) Related CVEs: CVE-2025-47947 CVE-2025-48866 CVE-2025-54571 Upstream summary: ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Versions up […]