openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-47372 CVE-2026-47373 Upstream summary: Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-8695 CVE-2025-1744 CVE-2025-1864 CVE-2026-40499 CVE-2024-29645 CVE-2023-1605 CVE-2022-0139 CVE-2022-0523  +12 more Upstream summary: radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_threads_list() function that allows remote […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-44774 CVE-2026-35051 CVE-2026-39858 CVE-2025-47952 CVE-2024-45410 CVE-2026-40912 CVE-2026-32695 CVE-2026-26999  +12 more Upstream summary: Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.46, 3.6.17, […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-8509 CVE-2026-8510 CVE-2026-8511 CVE-2026-8512 CVE-2026-8513 CVE-2026-8514 CVE-2026-8515 CVE-2026-8516  +12 more Upstream summary: Heap buffer overflow in WebML in Google Chrome prior to 148.0.7778.168 allowed a […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1957-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-14179 CVE-2024-4577 CVE-2024-1874 CVE-2026-6104 CVE-2026-6722 CVE-2026-7258 CVE-2026-7259 CVE-2026-7261  +12 more Upstream summary: In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-44597 CVE-2026-44603 CVE-2026-44601 CVE-2026-44602 CVE-2022-33903 CVE-2014-0160 CVE-2020-10593 CVE-2021-34548  +12 more Upstream summary: Tor before 0.4.9.7 has an out-of-bounds read when an END, a TRUNCATE, or […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-7324 CVE-2026-6746 CVE-2026-6747 CVE-2026-6748 CVE-2026-6749 CVE-2026-6750 CVE-2026-6751 CVE-2026-6752  +12 more Upstream summary: Memory safety bugs present in Thunderbird 150.0.0. Some of these bugs showed evidence […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:19588 (see also SUSE bugzilla) Related CVEs: CVE-2026-7320 CVE-2026-7321 CVE-2026-7322 CVE-2026-7323 CVE-2025-11708 CVE-2025-11709 CVE-2025-11710 CVE-2025-11711  +12 more Upstream summary: Information disclosure due to incorrect boundary conditions in the Audio/Video component. This vulnerability […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-4789 CVE-2026-24051 CVE-2026-24686 Upstream summary: Kyverno, versions 1.16.0 and later, are vulnerable to SSRF due to unrestricted CEL HTTP functions. Table of contents Symptom & […]