openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3341-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-2132 Upstream summary: A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14442-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-29025 CVE-2023-44487 CVE-2022-41881 CVE-2022-41915 CVE-2024-47535 CVE-2023-34462 CVE-2022-24823 Upstream summary: Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:3001-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-17144 Upstream summary: Bitcoin Core 0.14.x before 0.14.3, 0.15.x before 0.15.2, and 0.16.x before 0.16.3 and Bitcoin Knots 0.14.x through 0.16.x before 0.16.3 allow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0082-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-27758 Upstream summary: In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __array__ for a client-provided netref (e.g., […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0191-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-40577 Upstream summary: Alertmanager handles alerts sent by client applications such as the Prometheus server. An attacker with the permission to perform POST requests […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:4267 (see also SUSE bugzilla) Related CVEs: CVE-2024-25081 CVE-2024-25082 Upstream summary: Splinefont in FontForge through 20230101 allows command injection via crafted filenames. Table of contents Symptom & Impact Environment & Reproduction […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0047-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-25442 CVE-2024-25443 CVE-2024-25445 CVE-2024-25446 Upstream summary: An issue in the HuginBase::PanoramaMemento::loadPTScript function of Hugin v2022.0.0 allows attackers to cause a heap buffer overflow via […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0800-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45289 CVE-2023-45290 CVE-2024-24783 CVE-2024-24784 CVE-2024-24785 CVE-2023-39320 CVE-2023-39321 CVE-2023-39322  +5 more Upstream summary: When following an HTTP redirect to a domain which is not a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0461-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-25062 CVE-2023-45322 CVE-2023-39615 CVE-2024-34459 Upstream summary: An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0817-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-22201 CVE-2023-36478 CVE-2024-8184 CVE-2023-40167 CVE-2023-26048 CVE-2023-36479 CVE-2023-41900 CVE-2023-26049 Upstream summary: Jetty is a Java based web server and servlet engine. An HTTP/2 SSL connection […]