🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1572-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-34069 CVE-2024-49767 Upstream summary: Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2064-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-37568 Upstream summary: lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. Unless an algorithm is specified in a jwt.decode call, HMAC verification […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1990-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-0090 Upstream summary: NVIDIA GPU driver for Windows and Linux contains a vulnerability where a user can cause an out-of-bounds write. A successful exploit of […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1944-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-27834 Upstream summary: The issue was addressed with improved checks. This issue is fixed in Safari 17.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:0161-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36041 Upstream summary: KSmserver in KDE Plasma Workspace (aka plasma-workspace) before 5.27.11.1 and 6.x before 6.0.5.1 allows connections via ICE based purely on the host, […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2024-28871 CVE-2024-23837 Upstream summary: LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Version 0.5.46 may parse malformed request […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2024-5148 CVE-2025-5024 Upstream summary: A flaw was found in the gnome-remote-desktop package. The gnome-remote-desktop system daemon performs inadequate validation of session agents using D-Bus methods […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1675-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-33600 CVE-2024-33599 CVE-2024-2961 CVE-2023-6246 CVE-2020-1751 CVE-2023-4911 CVE-2023-4527 CVE-2023-25139 +12 more Upstream summary: nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory RHSA-2024:9193 (see also SUSE bugzilla) Related CVEs: CVE-2024-36039 Upstream summary: PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict. Table of contents […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2024-35186 CVE-2025-22620 CVE-2025-31130 Upstream summary: gitoxide is a pure Rust implementation of Git. During checkout, `gix-worktree-state` does not verify that paths point to locations in […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
