openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:2343-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-16301 CVE-2024-2397 CVE-2023-1801 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2016-7922  +12 more Upstream summary: The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0320-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19316 Upstream summary: When using the Azure backend with a shared access signature (SAS), Terraform versions prior to 0.12.17 may transmit the token and state […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2017-17663 CVE-2012-5640 CVE-2013-0348 Upstream summary: The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2006:056 (see also SUSE bugzilla) Related CVEs: CVE-2006-4335 CVE-2006-4337 CVE-2006-4338 CVE-2009-0179 CVE-2010-2971 CVE-2017-11546 CVE-2017-11547 Upstream summary: Array index error in the make_table function in unlzh.c in the LZH decompression component in gzip […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-16737 CVE-2018-16758 Upstream summary: tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation. Table of contents Symptom & Impact Environment & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1834-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-27347 CVE-2022-47016 CVE-2018-19387 Upstream summary: In tmux before version 3.1c the function input_csi_dispatch_sgr_colon() in file input.c contained a stack-based buffer-overflow that can be exploited by […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-5702 CVE-2014-4909 CVE-2018-5072 Upstream summary: Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:008 (see also SUSE bugzilla) Related CVEs: CVE-2010-4661 CVE-2010-1149 CVE-2014-0004 Upstream summary: udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules. Table of contents Symptom & Impact Environment […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:0548-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-29136 CVE-2021-41190 Upstream summary: Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2011-1145 Upstream summary: The SQLDriverConnect() function in unixODBC before 2.2.14p2 have a possible buffer overflow condition when specifying a large value for SAVEFILE parameter in […]