openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10214-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-21797 Upstream summary: The package joblib from 0 and before 1.2.0 are vulnerable to Arbitrary Code Execution via the pre_dispatch flag in Parallel() class due […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-35934 CVE-2022-35935 CVE-2022-35937 CVE-2022-35938 CVE-2022-35939 CVE-2022-35940 CVE-2022-35941 CVE-2022-35952  +12 more Upstream summary: TensorFlow is an open source platform for machine learning. The implementation of tf.reshape […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2023:0001-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-35978 Upstream summary: Minetest is a free open-source voxel game engine with easy modding and game creation. In **single player**, a mod can set a […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-35164 CVE-2021-28237 CVE-2019-9770 CVE-2023-26157 CVE-2022-33025 CVE-2023-36271 CVE-2023-36273 CVE-2019-9774  +12 more Upstream summary: LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10095-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-15690 CVE-2020-15692 CVE-2020-15694 CVE-2021-29495 CVE-2021-41259 CVE-2021-21372 CVE-2021-21374 CVE-2020-15693  +1 more Upstream summary: In Nim before 1.2.6, the standard library asyncftpclient lacks a check for whether […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10076-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-32292 CVE-2022-23097 CVE-2017-12865 CVE-2022-32293 CVE-2022-23098 CVE-2021-33833 CVE-2023-28488 CVE-2021-26675  +1 more Upstream summary: In ConnMan through 1.41, remote attackers able to send HTTP requests to the […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10081-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1996 CVE-2026-33814 CVE-2026-35205 CVE-2026-35204 CVE-2024-45337 CVE-2021-21272 CVE-2022-36055 CVE-2026-41888  +7 more Upstream summary: Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0. Table […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-2274 CVE-2016-0777 CVE-2026-35385 CVE-2024-6387 CVE-2021-28041 CVE-2021-41617 CVE-2023-38408 CVE-2008-1483  +12 more Upstream summary: The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2658-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1053 CVE-2021-43310 CVE-2022-31250 CVE-2022-23948 CVE-2022-23949 CVE-2022-23950 CVE-2022-23952 CVE-2022-23951 Upstream summary: Keylime does not enforce that the agent registrar data is the same when the tenant […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1415-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1949 CVE-2021-45341 CVE-2025-54141 CVE-2025-4435 CVE-2025-2487 CVE-2024-0775 CVE-2024-35817 CVE-2024-36921  +12 more Upstream summary: An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter […]