openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2010-0280 Upstream summary: Array index error in Jan Eric Kyprianidis lib3ds 1.x, as used in Google SketchUp 7.x before 7.1 M2, allows remote attackers to cause a denial of […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2020-12267 CVE-2024-39936 CVE-2023-32763 CVE-2023-24607 CVE-2022-25255 CVE-2020-13962 CVE-2020-0570 CVE-2020-17507  +9 more Upstream summary: setMarkdown in Qt before 5.14.2 has a use-after-free related to QTextMarkdownImporter::insertBlock. Table of […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-0011 CVE-2020-26117 CVE-2026-34352 CVE-2014-8240 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694  +2 more Upstream summary: Multiple heap-based buffer overflows in the ZRLE_DECODE function in common/rfb/zrleDecode.h in TigerVNC before […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2013-0851 CVE-2013-0852 CVE-2013-0868 CVE-2014-8544 CVE-2014-9604 CVE-2011-3946 CVE-2013-7010 CVE-2015-3395  +4 more Upstream summary: The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:2337-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-29367 Upstream summary: blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when there is a lack of space to write compressed data. […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:0793-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13112 CVE-2019-9278 CVE-2020-0452 CVE-2020-13113 CVE-2026-32775 CVE-2026-40385 CVE-2026-40386 CVE-2007-6351  +12 more Upstream summary: An issue was discovered in libexif before 0.6.22. Several buffer over-reads in EXIF […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14572-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-12401 CVE-2020-12403 CVE-2020-6829 CVE-2021-43527 CVE-2015-2721 CVE-2016-1950 CVE-2016-1979 CVE-2019-11719  +12 more Upstream summary: During ECDSA signature generation, padding applied in the nonce designed to ensure constant-time […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-7186 CVE-2018-7247 CVE-2018-7440 CVE-2018-7442 CVE-2018-3836 CVE-2018-7441 CVE-2017-18196 Upstream summary: Leptonica before 1.75.3 does not limit the number of characters in a %s format argument to […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1471-1 (see also SUSE bugzilla) Related CVEs: CVE-2010-2546 CVE-2009-3995 CVE-2009-3996 CVE-2007-6720 Upstream summary: Multiple heap-based buffer overflows in loaders/load_it.c in libmikmod, possibly 3.1.12, might allow remote attackers to execute arbitrary code via […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:0806-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-17455 Upstream summary: Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest, tSmbNtlmAuthChallenge, and tSmbNtlmAuthResponse read and write operations, as demonstrated by a […]