openSUSE Leap 15.6

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:16484 (see also SUSE bugzilla) Related CVEs: CVE-2026-4150 CVE-2026-4153 CVE-2026-4154 CVE-2026-2044 CVE-2026-2045 CVE-2026-2048 CVE-2026-2271 CVE-2026-2272  +12 more Upstream summary: GIMP PSD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:10950 (see also SUSE bugzilla) Related CVEs: CVE-2026-4224 CVE-2026-1299 CVE-2026-0672 CVE-2026-3644 CVE-2026-4519 CVE-2025-15366 CVE-2026-0865 CVE-2025-15367  +12 more Upstream summary: When an Expat parser with a registered ElementDeclHandler parses an inline document […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1192-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-27459 CVE-2026-27448 Upstream summary: pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1124-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-32853 CVE-2026-32854 Upstream summary: LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding handler […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0002 (see also SUSE bugzilla) Related CVEs: CVE-2025-45582 Upstream summary: GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with a certain two-step process. First, the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:6188 (see also SUSE bugzilla) Related CVEs: CVE-2026-3889 CVE-2026-4371 CVE-2025-5986 CVE-2025-5262 CVE-2025-3875 CVE-2025-3877 CVE-2025-3909 CVE-2025-3932  +11 more Upstream summary: Spoofing issue in Thunderbird. This vulnerability was fixed in Thunderbird 149 and […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:7679 (see also SUSE bugzilla) Related CVEs: CVE-2006-10002 CVE-2006-10003 Upstream summary: XML::Parser versions through 2.45 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5939 (see also SUSE bugzilla) Related CVEs: CVE-2026-26955 CVE-2026-31806 CVE-2026-31883 CVE-2026-31885 CVE-2026-22857 CVE-2026-23533 CVE-2026-23883 CVE-2026-23884  +12 more Upstream summary: FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1353-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-33870 CVE-2025-55163 CVE-2025-58056 CVE-2025-24970 CVE-2024-29025 CVE-2026-33871 CVE-2025-67735 CVE-2025-59419  +3 more Upstream summary: Netty is an asynchronous, event-driven network application framework. In versions prior to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-48340 CVE-2023-26253 Upstream summary: In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dht_setxattr_mds_cbk use-after-free. Table of contents Symptom & Impact Environment & Reproduction Root […]