openSUSE

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0221-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-39705 Upstream summary: NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python code, and the integrated data package download functionality […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0210-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-38448 Upstream summary: htags in GNU Global through 6.6.12 allows code execution in situations where dbpath (aka -d) is untrusted, because shell metacharacters may […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:2272-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28397 Upstream summary: An issue in the component js2py.disable_pyimport() of js2py up to v0.74 allows attackers to execute arbitrary code via a crafted API […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2021:1134-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-25289 CVE-2021-25292 CVE-2021-25293 CVE-2021-27923 CVE-2021-34552 CVE-2020-35654 CVE-2021-23437 CVE-2021-25290  +12 more Upstream summary: An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0112-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-25099 Upstream summary: In the CryptX module before 0.062 for Perl, gcm_decrypt_verify() and chacha20poly1305_decrypt_verify() do not verify the tag. Table of contents Symptom & […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1119-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-15052 CVE-2023-35947 CVE-2023-35946 CVE-2021-29429 Upstream summary: The HTTP client in Gradle before 5.6 sends authentication credentials originally destined for the configured host. If that […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0093-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-33476 Upstream summary: ReadyMedia (MiniDLNA) versions from 1.1.15 up to 1.3.2 is vulnerable to Buffer Overflow. The vulnerability is caused by incorrect validation logic […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0084-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-1669 CVE-2024-1670 CVE-2024-1671 CVE-2024-1672 CVE-2024-1673 CVE-2024-1674 CVE-2024-1675 CVE-2024-1676  +4 more Upstream summary: Out of bounds memory access in Blink in Google Chrome prior to […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0769-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-1597 Upstream summary: pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. Note this is not the default. In the […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0323-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-21646 CVE-2024-27099 CVE-2024-25110 Upstream summary: Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients […]