openSUSE

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:01884-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-2467 Upstream summary: A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15164-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-46802 Upstream summary: For a short time they PTY is set to mode 666, allowing any user on the system to connect to the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2025-6140 Upstream summary: A vulnerability, which was classified as problematic, was found in spdlog up to 1.15.1. This affects the function scoped_padder in the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15064-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-31162 CVE-2025-31163 CVE-2025-31164 CVE-2025-46397 CVE-2025-46398 CVE-2025-46399 CVE-2025-46400 Upstream summary: Floating point exception in fig2dev in version 3.2.9a allows an attacker to availability via local […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14995-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-32386 CVE-2025-32387 Upstream summary: Helm is a tool for managing Charts. A chart archive file can be crafted in a manner where it expands […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15081-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-47256 Upstream summary: Libxmp through 4.6.2 has a stack-based buffer overflow in depack_pha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15134-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-31176 CVE-2025-31177 CVE-2025-31178 CVE-2025-31179 CVE-2025-31180 CVE-2025-31181 CVE-2025-3359 Upstream summary: A flaw was found in gnuplot. The plot3d_points() function may lead to a segmentation fault […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15034-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-22872 Upstream summary: The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing. When directly using […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14947-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-2849 Upstream summary: A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::un_DT_INIT of the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.6 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:01569-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-43961 CVE-2025-43962 CVE-2025-43964 CVE-2025-43963 Upstream summary: In LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag parser. Table of contents […]