openSUSE

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4060-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-42811 Upstream summary: aes-gcm is a pure Rust implementation of the AES-GCM. Starting in version 0.10.0 and prior to version 0.10.3, in the AES […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3966-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-22628 Upstream summary: Buffer Overflow vulnerability in LibRaw::stretch() function in librawsrcpostprocessingaspect_ratio.cpp. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3261-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-41105 Upstream summary: An issue was discovered in Python 3.11 through 3.11.4. If a path containing '' bytes is passed to os.path.normpath(), the path […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3727-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-39976 Upstream summary: log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3734-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-18651 CVE-2020-18652 Upstream summary: Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3702-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-4875 CVE-2023-4874 Upstream summary: Null pointer dereference when composing from a specially crafted draft message in Mutt >1.5.2 <2.2.12 Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1578-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8927 Upstream summary: A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3174-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-45154 Upstream summary: A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3093-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-40030 Upstream summary: Cargo downloads a Rust project's dependencies and compiles the project. Starting in Rust 1.60.0 and prior to 1.72, Cargo did not […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3635-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-22219 Upstream summary: Buffer Overflow vulnerability in function bitwriter_grow_ in flac before 1.4.0 allows remote attackers to run arbitrary code via crafted input to […]