openSUSE

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2149-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1348 CVE-2011-1098 CVE-2011-1154 CVE-2011-1155 Upstream summary: A vulnerability was found in logrotate in how the state file is created. The state file is used to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2022:632-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-27239 CVE-2012-1586 CVE-2020-14342 CVE-2021-20208 Upstream summary: In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:0142-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-27836 CVE-2020-27819 Upstream summary: An issue was discoverered in in function xls_getWorkSheet in xls.c in libxls 1.6.2, allows attackers to cause a denial of service, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1338-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-13636 CVE-2010-4651 CVE-2015-1196 CVE-2016-10713 CVE-2021-45261 CVE-2019-20633 CVE-2018-6952 CVE-2018-6951 Upstream summary: In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:712-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-28366 Upstream summary: Certain Neko-related HTML parsers allow a denial of service via crafted Processing Instruction (PI) input that causes excessive heap memory consumption. In […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:12876 (see also SUSE bugzilla) Related CVEs: CVE-2022-29458 Upstream summary: ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library. Table of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1277-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-19566 CVE-2018-19568 CVE-2018-5805 CVE-2018-5806 CVE-2021-3624 CVE-2017-13735 CVE-2017-14608 CVE-2018-19655  +1 more Upstream summary: A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could be used […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-27419 Upstream summary: rtl_433 21.12 was discovered to contain a stack overflow in the function acurite_00275rm_decode at /devices/acurite.c. This vulnerability allows attackers to cause a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2022:0100-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-32434 CVE-2021-32435 Upstream summary: abcm2ps v8.14.11 was discovered to contain an out-of-bounds read in the function calculate_beam at draw.c. Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-21945 CVE-2022-21946 Upstream summary: A Insecure Temporary File vulnerability in cscreen of openSUSE Factory allows local attackers to cause DoS for cscreen and a system […]