openSUSE Tumbleweed — pico — multiple vulnerabilities (2 CVEs) — patch and remediation guide
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2021:0675-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-14929 CVE-2021-38370 Upstream summary: Alpine before 2.23 silently proceeds to use an insecure connection after a /tls is sent in certain circumstances involving PREAUTH, which […]