openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0350-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-0132 CVE-2024-0133 Upstream summary: NVIDIA Container Toolkit 1.16.1 or earlier contains a Time-of-check Time-of-Use (TOCTOU) vulnerability when used with default configuration where a specifically […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0358-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-51774 Upstream summary: qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors. Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0352-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-43805 Upstream summary: jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36474 CVE-2024-42415 Upstream summary: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0351-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-21272 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:7346 (see also SUSE bugzilla) Related CVEs: CVE-2024-47076 CVE-2024-47176 CVE-2025-57812 CVE-2025-64524 CVE-2024-47850 CVE-2025-64503 Upstream summary: CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3876-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-49768 CVE-2024-49769 Upstream summary: Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may send a request […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0800-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45289 CVE-2023-45290 CVE-2024-24783 CVE-2024-24784 CVE-2024-24785 Upstream summary: When following an HTTP redirect to a domain which is not a subdomain match or exact match […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14832-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-7254 CVE-2026-0994 CVE-2025-4565 Upstream summary: Any project that parses untrusted Protocol Buffers data containing an arbitrary number of nested groups / series of SGROUP […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14417-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-47874 CVE-2025-54121 Upstream summary: Starlette is an Asynchronous Server Gateway Interface (ASGI) framework/toolkit. Prior to version 0.40.0, Starlette treats `multipart/form-data` parts without a `filename` […]