🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2969-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-42353 Upstream summary: WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Location header to include the request hostname, it […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2925-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-39134 CVE-2020-18442 CVE-2020-18770 Upstream summary: A Stack Buffer Overflow vulnerability in zziplibv 0.13.77 allows attackers to cause a denial of service via the __zzip_fetch_disk_trailer() […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:14354-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-43806 Upstream summary: Rustix is a set of safe Rust bindings to POSIX-ish APIs. When using `rustix::fs::Dir` using the `linux_raw` backend, it's possible for […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2961-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-22034 Upstream summary: Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This allows the attacker to change […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory openSUSE-SU-2024:0243-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-27305 CVE-2024-34083 Upstream summary: aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd is vulnerable to inbound SMTP smuggling. SMTP […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2632-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-49990 CVE-2023-49991 CVE-2023-49992 CVE-2023-49993 CVE-2023-49994 Upstream summary: Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c. Table of contents […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory RHSA-2024:6184 (see also SUSE bugzilla) Related CVEs: CVE-2024-40897 Upstream summary: Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory RHSA-2024:9423 (see also SUSE bugzilla) Related CVEs: CVE-2023-29483 Upstream summary: eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2024:2603-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4235 CVE-2023-4641 Upstream summary: shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees Table of contents Symptom & Impact Environment & […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read • Source: SUSE advisory RHSA-2024:9114 (see also SUSE bugzilla) Related CVEs: CVE-2024-36472 Upstream summary: In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses provided by […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
