openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1124-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-32853 CVE-2026-32854 Upstream summary: LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding handler […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0002 (see also SUSE bugzilla) Related CVEs: CVE-2025-45582 Upstream summary: GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with a certain two-step process. First, the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:6188 (see also SUSE bugzilla) Related CVEs: CVE-2026-3889 CVE-2026-4371 CVE-2025-5986 CVE-2025-5262 CVE-2025-3875 CVE-2025-3877 CVE-2025-3909 CVE-2025-3932  +11 more Upstream summary: Spoofing issue in Thunderbird. This vulnerability was fixed in Thunderbird 149 and […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:7679 (see also SUSE bugzilla) Related CVEs: CVE-2006-10002 CVE-2006-10003 Upstream summary: XML::Parser versions through 2.45 for Perl could overflow the pre-allocated buffer size cause a heap corruption (double free or corruption) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5939 (see also SUSE bugzilla) Related CVEs: CVE-2026-26955 CVE-2026-31806 CVE-2026-31883 CVE-2026-31885 CVE-2026-22857 CVE-2026-23533 CVE-2026-23883 CVE-2026-23884  +12 more Upstream summary: FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1353-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-33870 CVE-2025-55163 CVE-2025-58056 CVE-2025-24970 CVE-2024-29025 CVE-2026-33871 CVE-2025-67735 CVE-2025-59419  +3 more Upstream summary: Netty is an asynchronous, event-driven network application framework. In versions prior to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-48340 CVE-2023-26253 Upstream summary: In Gluster GlusterFS 11.0, there is an xlators/cluster/dht/src/dht-common.c dht_setxattr_mds_cbk use-after-free. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15181-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-32801 CVE-2025-32802 CVE-2025-32803 Upstream summary: Kea configuration and API directives can be used to load a malicious hook library. Many common configurations run Kea […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1068-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-3172 Upstream summary: Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user to leak sensitive data from […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:12176 (see also SUSE bugzilla) Related CVEs: CVE-2026-30922 CVE-2026-23490 Upstream summary: pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of […]