openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14697-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-34169 Upstream summary: The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3949-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45802 CVE-2024-40725 CVE-2024-38474 CVE-2024-38475 CVE-2024-38476 CVE-2024-38477 CVE-2024-27316 CVE-2023-31122  +4 more Upstream summary: When a HTTP/2 stream was reset (RST frame) by a client, there […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3960-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41311 CVE-2023-29659 Upstream summary: In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an overlay image with forged offsets can lead […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3941-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-46951 CVE-2024-46953 CVE-2024-46956 CVE-2024-33871 CVE-2020-36773 CVE-2023-46751 CVE-2023-43115 CVE-2023-36664  +7 more Upstream summary: An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0352-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-43805 Upstream summary: jupyterlab is an extensible environment for interactive and reproducible computing, based on the Jupyter Notebook Architecture. This vulnerability depends on user […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36474 CVE-2024-42415 Upstream summary: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0351-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-21272 Upstream summary: Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.0.0 and prior. Difficult […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14445-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-49769 Upstream summary: Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote client closes the connection before […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3873-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-43809 Upstream summary: `Bundler` is a package for managing application dependencies in Ruby. In `bundler` versions before 2.2.33, when working with untrusted and apparently […]