openSUSE

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4514-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-41913 Upstream summary: strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4496-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-1183 Upstream summary: A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2023:0374-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-35934 CVE-2023-46121 Upstream summary: yt-dlp is a command-line program to download videos from video sites. During file downloads, yt-dlp or the external downloaders that […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2023:0369-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-28488 Upstream summary: client.c in gdhcp in ConnMan through 1.41 could be used by network-adjacent attackers (operating a crafted DHCP server) to cause a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4449-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45897 Upstream summary: exfatprogs before 1.2.2 allows out-of-bounds memory access, such as in read_file_dentry_set. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4439-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-38252 CVE-2023-38253 Upstream summary: An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may allow an attacker […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2023:0363-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-31794 Upstream summary: MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push. This vulnerability allows attackers to cause a Denial […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2023:0350-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-38037 Upstream summary: ActiveSupport::EncryptedFile writes contents that will be encrypted to a temporary file. The temporary file's permissions are defaulted to the user's current […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3556-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45853 Upstream summary: MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3482-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-23559 Upstream summary: In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition. Table of contents […]