openSUSE Leap 15.6

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:8858 (see also SUSE bugzilla) Related CVEs: CVE-2026-23868 CVE-2025-31344 Upstream summary: Giflib contains a double-free vulnerability that is the result of a shallow copy in GifMakeSavedImage and incorrect error handling. The […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:3938 (see also SUSE bugzilla) Related CVEs: CVE-2025-12801 Upstream summary: A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0648-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-12474 Upstream summary: A specially-crafted file can cause libjxl's decoder to read pixel data from uninitialized (but allocated) memory. This can be done by […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2026:1001-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-31812 Upstream summary: Quinn is a pure-Rust, async-compatible implementation of the IETF QUIC transport protocol. Prior to 0.11.14, a remote, unauthenticated attacker can trigger […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0875-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-27139 CVE-2026-25679 CVE-2026-27142 CVE-2025-47910 Upstream summary: On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0849-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-27205 Upstream summary: Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and below, when the session object is […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:10950 (see also SUSE bugzilla) Related CVEs: CVE-2026-2297 CVE-2024-8088 Upstream summary: The import hook in CPython that handles legacy *.pyc files (SourcelessFileLoader) is incorrectly handled in FileLoader (a base class) and […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0757-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-24122 CVE-2026-26958 CVE-2026-24137 CVE-2026-23991 CVE-2026-23992 CVE-2026-22772 CVE-2026-22703 CVE-2024-29902  +1 more Upstream summary: Cosign provides code signing and transparency for containers and binaries. In versions […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10631 (see also SUSE bugzilla) Related CVEs: CVE-2025-5024 Upstream summary: A flaw was found in gnome-remote-desktop. Once gnome-remote-desktop listens for RDP connections, an unauthenticated attacker can exhaust system resources and repeatedly […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0775-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-2604 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix […]