openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:1845-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-7409 CVE-2018-7485 Upstream summary: In unixODBC before 2.3.5, there is a buffer overflow in the unicode_to_ansi_copy() function in DriverManager/__info.c. Table of contents Symptom & Impact […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:695-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-1283 CVE-2017-6004 CVE-2014-8964 CVE-2015-3217 CVE-2017-7186 CVE-2017-7245 CVE-2016-3191 Upstream summary: The pcre_compile2 function in pcre_compile.c in PCRE 8.38 mishandles the /((?:F?+(?:^(?(R)a+"){99}-))(?J)(?'R'(?'R'<((?'RR'(?'R'){97)?J)?J)(?'R'(?'R'){99|(:(?|(?'R')(k'R')|((?'R')))H'R'R)(H'R))))))/ pattern and related patterns with […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:2300-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-8367 CVE-2013-2126 CVE-2013-2127 Upstream summary: The phase_one_correct function in Libraw before 0.17.1 allows attackers to cause memory errors and possibly execute arbitrary code, related to […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:0829-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-1000140 Upstream summary: rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2007:023 (see also SUSE bugzilla) Related CVEs: CVE-2007-0238 CVE-2019-9855 CVE-2024-5261 CVE-2022-26305 CVE-2006-2198 CVE-2019-9854 CVE-2022-3140 CVE-2006-2199  +12 more Upstream summary: Stack-based buffer overflow in filterstarcalcscflt.cxx in the StarCalc parser in OpenOffice.org (OOo) Office […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:1791-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-11499 CVE-2018-19827 CVE-2022-26592 CVE-2022-43357 CVE-2022-43358 CVE-2018-19797 CVE-2018-19837 CVE-2018-19838  +7 more Upstream summary: A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:1166-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3246 CVE-2025-52194 CVE-2026-37555 CVE-2024-50612 CVE-2022-33065 CVE-2018-13139 CVE-2025-56226 CVE-2021-4156  +12 more Upstream summary: A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:1187-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20314 Upstream summary: Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:3200-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10933 CVE-2025-5372 CVE-2019-14889 CVE-2026-0964 CVE-2026-0966 CVE-2025-8114 CVE-2025-4877 CVE-2025-4878  +12 more Upstream summary: A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:0045-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-15126 CVE-2018-15127 CVE-2018-20749 CVE-2018-20750 CVE-2018-6307 CVE-2026-32853 CVE-2026-32854 CVE-2017-18922  +12 more Upstream summary: LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerability in server code of file […]