openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1454-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-15953 CVE-2017-8825 Upstream summary: LibEtPan through 1.9.4, as used in MailCore 2 through 0.6.3 and other products, has a STARTTLS buffering issue that affects IMAP, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-2923 CVE-2017-2924 CVE-2018-7435 CVE-2018-7436 CVE-2018-7437 CVE-2018-7438 CVE-2018-7439 CVE-2015-2753  +2 more Upstream summary: An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2015-5738 CVE-2021-3345 CVE-2021-33560 CVE-2024-2236 CVE-2021-40528 CVE-2013-4242 CVE-2014-3591 CVE-2015-0837  +6 more Upstream summary: The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-6594 CVE-2017-17439 CVE-2019-12098 Upstream summary: The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2021-29462 CVE-2026-41682 CVE-2016-6255 CVE-2016-8863 CVE-2021-28302 Upstream summary: The Portable SDK for UPnP Devices is an SDK for development of UPnP device and control point applications. The server part of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-3494 Upstream summary: kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:1057-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-28091 Upstream summary: Lasso all versions prior to 2.7.0 has improper verification of a cryptographic signature. Table of contents Symptom & Impact Environment & Reproduction […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2016:0226-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-6908 CVE-2020-8027 CVE-2015-1545 CVE-2015-1546 CVE-2017-17740 CVE-2019-13057 CVE-2019-13565 Upstream summary: The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier allows remote attackers to cause a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2016:2746-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-3521 CVE-2016-6662 CVE-2015-2582 CVE-2015-2611 CVE-2015-2617 CVE-2015-2641 CVE-2015-2643 CVE-2015-2648  +12 more Upstream summary: Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2022:1093-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19203 CVE-2019-19204 CVE-2019-19246 CVE-2019-13224 CVE-2019-13225 CVE-2019-19012 CVE-2020-26159 Upstream summary: An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function gb18030_mbc_enc_len in file gb18030.c, […]