openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:2047-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-28362 CVE-2020-28366 CVE-2020-28367 CVE-2021-3115 CVE-2020-24553 CVE-2021-3114 Upstream summary: Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service. Table of contents Symptom & Impact […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:0480-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-27918 CVE-2021-33196 CVE-2021-33198 CVE-2021-31525 CVE-2021-33195 CVE-2021-33197 CVE-2021-34558 CVE-2021-36221 Upstream summary: encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2020-0256 CVE-2021-0308 Upstream summary: In LoadPartitionTable of gpt.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:0921-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-0797 Upstream summary: GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:0022-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-18718 Upstream summary: An issue was discovered in gThumb through 3.6.2. There is a double-free vulnerability in the add_themes_from_dir method in dlg-contact-sheet.c because of two […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1626-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4419 CVE-2013-2124 Upstream summary: The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the –remote or –listen option, does not properly check the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2010:008 (see also SUSE bugzilla) Related CVEs: CVE-2010-0001 CVE-2009-2624 Upstream summary: Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:0222-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-9494 CVE-2019-9499 CVE-2020-12695 CVE-2023-52424 CVE-2014-3686 CVE-2015-1863 CVE-2015-4141 CVE-2015-4142  +12 more Upstream summary: The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2005:039 (see also SUSE bugzilla) Related CVEs: CVE-2005-2096 CVE-2004-0797 CVE-2010-5252 Upstream summary: zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:2174-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-14822 Upstream summary: A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to […]