openSUSE Tumbleweed

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-12026 CVE-2014-1831 CVE-2014-1832 CVE-2015-7519 CVE-2016-1247 CVE-2018-12029 CVE-2013-2119 Upstream summary: During the spawning of a malicious Passenger-managed application, SpawningKit in Phusion Passenger 5.3.x before 5.3.2 allows […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:011 (see also SUSE bugzilla) Related CVEs: CVE-2008-1922 Upstream summary: Multiple stack-based buffer overflows in Sarg might allow attackers to execute arbitrary code via unknown vectors, probably a crafted Squid log file. […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14572-1 (see also SUSE bugzilla) Related CVEs: CVE-2008-0412 CVE-2008-0419 CVE-2008-1195 CVE-2009-3388 CVE-2009-3980 CVE-2009-3982 CVE-2010-1208 CVE-2010-2753  +12 more Upstream summary: The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:1388-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-11627 CVE-2018-15599 Upstream summary: gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling shell injection via a User ID. Table […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1769-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-15229 CVE-2018-19295 CVE-2019-11328 CVE-2019-19724 CVE-2020-13845 CVE-2020-13846 CVE-2020-13847 CVE-2018-12021  +3 more Upstream summary: Singularity (an open source container platform) from version 3.1.1 through 3.6.3 has a […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:2540-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-12527 CVE-2020-15810 CVE-2020-15811 CVE-2025-62168 CVE-2024-25111 CVE-2024-25617 CVE-2023-49285 CVE-2023-49286  +12 more Upstream summary: An issue was discovered in Squid 4.0.23 through 4.7. When checking Basic Authentication […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-18408 CVE-2025-51006 CVE-2023-27783 CVE-2023-27786 CVE-2017-6429 CVE-2018-17580 CVE-2018-17582 CVE-2019-8376  +8 more Upstream summary: A use-after-free was discovered in the tcpbridge binary of Tcpreplay 4.3.0 beta1. The […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:0557-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20787 CVE-2020-12066 CVE-2014-9351 Upstream summary: Teeworlds before 0.7.4 has an integer overflow when computing a tilemap size. Table of contents Symptom & Impact Environment & […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-18604 CVE-2023-32700 CVE-2016-10243 CVE-2018-17407 CVE-2023-32668 CVE-2020-8016 Upstream summary: In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, […]