🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1534-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-32487 CVE-2022-48624 Upstream summary: less through 653 allows OS command execution via a newline character in the name of a file, because quoting is […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1572-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-34069 Upstream summary: Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of Werkzeug can allow an attacker to execute […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:0119-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40468 CVE-2012-3505 CVE-2017-11747 CVE-2023-40533 CVE-2023-49606 Upstream summary: Potential leak of left-over heap data if custom error page templates containing special non-standard variables are used. […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1549-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-3758 Upstream summary: A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:14536-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-9587 CVE-2017-7550 CVE-2018-10874 CVE-2016-8614 CVE-2016-8628 CVE-2020-10744 CVE-2020-14330 CVE-2020-14332 +6 more Upstream summary: Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1396-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-31744 CVE-2023-51257 Upstream summary: In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:0114-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-25583 CVE-2023-26437 Upstream summary: A crafted response from an upstream server the recursor has been configured to forward-recurse to can cause a Denial of […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2022:2562-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25657 Upstream summary: A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:0113-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28130 Upstream summary: An incorrect type conversion vulnerability exists in the DVPSSoftcopyVOI_PList::createFromImage functionality of OFFIS DCMTK 3.6.8. A specially crafted malformed file can lead […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:1440-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-1135 Upstream summary: Gunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
