openSUSE Tumbleweed

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-2100 CVE-2020-29361 Upstream summary: A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0668 (see also SUSE bugzilla) Related CVEs: CVE-2025-68615 CVE-2015-5621 CVE-2018-18065 CVE-2022-44793 CVE-2022-24805 CVE-2022-24806 CVE-2022-24807 CVE-2022-24808  +7 more Upstream summary: net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0757-1 Related CVEs: CVE-2026-23989 Upstream summary: REVA is an interoperability platform. Prior to 2.42.3 and 2.40.3, a bug in the GRPC authorization middleware of the "Reva" component of OpenCloud allows a malicious […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0476-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-21226 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix Solution […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:1902 (see also SUSE bugzilla) Related CVEs: CVE-2026-24049 Upstream summary: wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. In versions 0.40.0 through 0.46.1, the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2026-24881 CVE-2026-24882 CVE-2026-24883 CVE-2025-68973 CVE-2006-0455 CVE-2010-2547 CVE-2013-4402 CVE-2018-12020  +10 more Upstream summary: In GnuPG before 2.5.17, a crafted CMS (S/MIME) EnvelopedData message carrying an oversized […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0355-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-1484 CVE-2026-1489 CVE-2025-13601 CVE-2025-6052 CVE-2024-52533 CVE-2019-12450 CVE-2025-7039 CVE-2025-3360  +11 more Upstream summary: A flaw was found in the GLib Base64 encoding routine when processing very […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:20139-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-23949 Upstream summary: jaraco.context, an open-source software package that provides some useful decorators and context managers, has a Zip Slip path traversal vulnerability in the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2025-68616 Upstream summary: WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery (SSRF) protection bypass exists in WeasyPrint's […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0914 (see also SUSE bugzilla) Related CVEs: CVE-2025-14422 CVE-2025-14423 CVE-2025-14424 CVE-2025-14425 CVE-2025-15059 CVE-2025-10920 CVE-2025-10922 CVE-2025-10925  +12 more Upstream summary: GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows […]