openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14937-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-30204 CVE-2018-16873 CVE-2021-28235 CVE-2023-48795 CVE-2023-47108 CVE-2022-41723 CVE-2019-11254 CVE-2018-16874  +5 more Upstream summary: golang-jwt is a Go implementation of JSON Web Tokens. Starting in version […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14953-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-27832 CVE-2025-27835 CVE-2025-27836 CVE-2024-46951 CVE-2024-46953 CVE-2024-46956 CVE-2024-33871 CVE-2025-59798  +9 more Upstream summary: An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14984-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-31115 Upstream summary: XZ Utils provide a general-purpose data-compression library plus command-line tools. In XZ Utils 5.3.3alpha to 5.8.0, the multithreaded .xz decoder in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0113-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-2592 Upstream summary: A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0113-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-3015 CVE-2024-45679 CVE-2024-40724 CVE-2025-3548 CVE-2024-48423 CVE-2024-48424 CVE-2024-48425 CVE-2024-53425  +3 more Upstream summary: A vulnerability classified as critical has been found in Open Asset Import […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14912-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-2361 Upstream summary: A vulnerability was found in Mercurial SCM 4.5.3/71.19.145.211. It has been declared as problematic. This vulnerability affects unknown code of the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14929-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-30474 CVE-2025-27553 Upstream summary: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Commons VFS. The FtpFileObject class can throw an exception […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1019-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-24049 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14892-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36843 Upstream summary: The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature malleability and does not satisfy the SUF-CMA (Strong Existential […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory ESSA-2025:2834 (see also SUSE bugzilla) Related CVEs: CVE-2025-27363 Upstream summary: An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting […]