openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10197-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-32323 CVE-2019-19005 CVE-2017-9182 CVE-2019-19004 Upstream summary: AutoTrace v0.40.0 was discovered to contain a heap overflow via the ReadImage function at input-bmp.c:660. Table of contents Symptom […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:4306-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-42920 Upstream summary: Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10202-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-34055 CVE-2022-41751 CVE-2021-3496 CVE-2008-4575 CVE-2008-4641 CVE-2018-6612 CVE-2016-3822 CVE-2018-16554  +1 more Upstream summary: jhead 3.06 is vulnerable to Buffer Overflow via exif.c in function Put16u. Table […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:4148-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-44638 Upstream summary: In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:10198-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-45059 CVE-2022-45060 CVE-2022-38150 CVE-2022-23959 CVE-2019-15892 CVE-2025-30346 CVE-2013-4484 Upstream summary: An issue was discovered in Varnish Cache 7.x before 7.1.2 and 7.2.x before 7.2.1. A request […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0405-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-3534 CVE-2021-45940 CVE-2022-3533 CVE-2022-3606 Upstream summary: A vulnerability classified as critical has been found in Linux Kernel. Affected is the function btf_dump_name_dups of the file […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3895-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20378 Upstream summary: ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. Table of contents Symptom & Impact Environment & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-31253 CVE-2023-2953 Upstream summary: A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory allows local attackers with control of the ldap user or group […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3823-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-41853 Upstream summary: Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb (HyperSQL DataBase) to process untrusted input may be vulnerable to a remote code execution attack. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3875-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-23926 Upstream summary: The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious […]