openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:3744-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-6545 CVE-2025-6547 CVE-2024-48949 CVE-2024-48948 CVE-2025-5889 Upstream summary: Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation. This vulnerability is associated with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:20479-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-6018 Upstream summary: A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM). This flaw allows an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:11888 (see also SUSE bugzilla) Related CVEs: CVE-2025-5222 CVE-2020-21913 Upstream summary: A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:12346 (see also SUSE bugzilla) Related CVEs: CVE-2025-49091 Upstream summary: KDE Konsole before 25.04.2 allows remote code execution in a certain scenario. It supports loading URLs from the scheme handlers such […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:9517 (see also SUSE bugzilla) Related CVEs: CVE-2011-10007 Upstream summary: File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:9329 (see also SUSE bugzilla) Related CVEs: CVE-2025-40908 Upstream summary: YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified Table of contents Symptom & Impact […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:9114 (see also SUSE bugzilla) Related CVEs: CVE-2025-48734 Upstream summary: Improper Access Control vulnerability in Apache Commons. A special BeanIntrospector class was added in version 1.9.2. This can be used to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:01816-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28285 CVE-2023-50979 Upstream summary: A Fault Injection vulnerability in the SymmetricDecrypt function in cryptopp/elgamal.h of Cryptopp Crypto++ 8.9, allows an attacker to co-reside in […]