openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2016:1329-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-7705 CVE-2015-7853 CVE-2015-7871 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297  +12 more Upstream summary: The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:019 (see also SUSE bugzilla) Related CVEs: CVE-2008-2374 Upstream summary: src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:0348-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-12178 CVE-2026-25833 CVE-2026-34874 CVE-2023-45230 CVE-2023-45232 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763  +12 more Upstream summary: Buffer overflow in network stack for EDK II may allow unprivileged user to […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2022:0447-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1437 Upstream summary: Eval injection vulnerability in the Module-Metadata module before 1.000015 for Perl allows remote attackers to execute arbitrary Perl code via the $Version […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2012:0590-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-1823 CVE-2012-2688 CVE-2014-3622 CVE-2010-2225 CVE-2010-2950 CVE-2012-0830 CVE-2013-6420 CVE-2015-0235  +12 more Upstream summary: sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2008-0599 CVE-2022-37454 CVE-2021-21708 CVE-2021-21702 CVE-2005-3390 CVE-2005-3392 CVE-2018-1000888 CVE-2022-31628  +12 more Upstream summary: The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1675-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-26935 CVE-2005-2869 CVE-2006-1804 CVE-2015-8980 CVE-2016-9849 CVE-2016-9865 CVE-2018-12581 CVE-2018-15605  +12 more Upstream summary: An issue was discovered in SearchController in phpMyAdmin before 4.9.6 and 5.x before […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-1000221 CVE-2023-24056 Upstream summary: pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote() that can result in dequote() function returns 1-byte allocation […]