openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2044-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-25647 Upstream summary: The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:0132-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24828 CVE-2021-41116 CVE-2021-29472 Upstream summary: Composer is a dependency manager for the PHP programming language. Integrators using Composer code to call `VcsDriver::getFileContent` can have a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1664-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-26491 CVE-2008-2927 CVE-2009-2694 CVE-2010-0013 CVE-2011-3594 CVE-2012-6152 CVE-2017-2640 CVE-2008-2955  +12 more Upstream summary: An issue was discovered in Pidgin before 2.14.9. A remote attacker who can […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-25745 CVE-2021-25742 Upstream summary: A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the spec.rules[].http.paths[].path […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1510-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-29527 Upstream summary: Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1161-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24070 CVE-2017-9800 CVE-2019-0203 CVE-2020-17525 CVE-2024-46901 CVE-2021-28544 CVE-2007-2448 CVE-2009-2411  +12 more Upstream summary: Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1274-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1270 CVE-2007-4988 CVE-2020-12672 CVE-2025-32460 CVE-2025-27795 CVE-2025-27796 CVE-2006-3744 CVE-2008-1096  +12 more Upstream summary: In GraphicsMagick, a heap buffer overflow was found when parsing MIFF. Table of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1276-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-26495 CVE-2005-3534 CVE-2015-0847 Upstream summary: In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1218-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-33657 CVE-2019-13616 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7577 CVE-2019-7578  +4 more Upstream summary: There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-21688 CVE-2022-21690 CVE-2022-21691 CVE-2022-21692 CVE-2022-21693 CVE-2022-21694 CVE-2022-21695 CVE-2022-21696  +3 more Upstream summary: OnionShare is an open source tool that lets you securely and anonymously share […]