openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1002-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-6827 Upstream summary: Gunicorn version 21.2.0 does not properly validate the value of the 'Transfer-Encoding' header as specified in the RFC standards, which leads […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0103-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-27664 Upstream summary: In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14891-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-2176 CVE-2025-2177 CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 Upstream summary: A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:2562-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25657 Upstream summary: A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0094-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-22869 CVE-2025-21613 CVE-2025-21614 Upstream summary: SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0091-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-22868 Upstream summary: An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing. Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0081-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-2961 CVE-2023-30536 CVE-2025-24529 CVE-2025-24530 Upstream summary: The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:0080-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-27144 CVE-2025-58058 CVE-2023-45288 CVE-2025-29923 Upstream summary: Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0751-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-43591 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0754-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-1492 CVE-2024-11595 CVE-2024-11596 CVE-2024-0207 CVE-2024-0210 CVE-2024-0211 CVE-2024-2955 CVE-2026-0959  +12 more Upstream summary: Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and […]