openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02119-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-20260 CVE-2023-20197 CVE-2024-20380 CVE-2024-20505 CVE-2026-20031 CVE-2025-20234 CVE-2025-20128 CVE-2024-20506  +1 more Upstream summary: A vulnerability in the PDF scanning processes of ClamAV could allow an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15194-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-46807 CVE-2020-28935 CVE-2025-46806 Upstream summary: A Allocation of Resources Without Limits or Throttling vulnerability in sslh allows attackers to easily exhaust the file descriptors […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10110 (see also SUSE bugzilla) Related CVEs: CVE-2025-32462 CVE-2025-32463 Upstream summary: Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15167-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-3155 Upstream summary: A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:14177 (see also SUSE bugzilla) Related CVEs: CVE-2025-48976 Upstream summary: Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:14130 (see also SUSE bugzilla) Related CVEs: CVE-2025-5914 CVE-2024-48958 CVE-2024-48957 CVE-2024-20696 CVE-2024-20697 CVE-2025-5916 CVE-2025-5915 CVE-2025-5917  +3 more Upstream summary: A vulnerability has been identified in the libarchive library, specifically within the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:8837 (see also SUSE bugzilla) Related CVEs: CVE-2025-47947 CVE-2025-48866 CVE-2025-54571 Upstream summary: ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. Versions up […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:3744-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-6545 CVE-2025-6547 CVE-2024-48949 CVE-2024-48948 CVE-2025-5889 Upstream summary: Improper Input Validation vulnerability in pbkdf2 allows Signature Spoofing by Improper Validation. This vulnerability is associated with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:20479-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-6018 Upstream summary: A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM). This flaw allows an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:11888 (see also SUSE bugzilla) Related CVEs: CVE-2025-5222 CVE-2020-21913 Upstream summary: A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' […]