openSUSE

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:14366-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41996 CVE-2024-6119 CVE-2024-4741 CVE-2023-5363 CVE-2023-50782 CVE-2024-5535 CVE-2024-4603 CVE-2024-2511  +10 more Upstream summary: Validating the order of the public keys in the Diffie-Hellman Key Agreement […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0305-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-50186 Upstream summary: GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0282-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-45230 CVE-2022-28346 CVE-2024-41989 CVE-2024-41990 CVE-2024-41991 CVE-2024-42005 CVE-2024-38875 CVE-2024-39330  +9 more Upstream summary: An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3090-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-44070 CVE-2024-34088 CVE-2024-31950 CVE-2024-31951 CVE-2024-31948 CVE-2023-47234 CVE-2023-47235 CVE-2023-38802  +11 more Upstream summary: An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory ESSA-2024:0627 (see also SUSE bugzilla) Related CVEs: CVE-2023-31315 CVE-2021-26345 CVE-2021-46766 CVE-2021-46774 CVE-2022-23820 CVE-2022-23830 CVE-2023-20519 CVE-2023-20521  +4 more Upstream summary: Improper validation in a model specific register (MSR) could allow a malicious […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0268-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-6257 CVE-2023-42363 CVE-2024-35192 Upstream summary: HashiCorp's go-getter library can be coerced into executing Git update on an existing maliciously modified Git Configuration, potentially leading […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6670 (see also SUSE bugzilla) Related CVEs: CVE-2024-43398 CVE-2021-33621 CVE-2024-41123 CVE-2024-41946 CVE-2024-39908 CVE-2024-35176 CVE-2021-41817 CVE-2023-28755  +1 more Upstream summary: REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0244-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-30549 CVE-2023-38496 Upstream summary: Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2024-35434 CVE-2024-3119 CVE-2024-3120 Upstream summary: Irontec Sngrep v1.8.1 was discovered to contain a heap buffer overflow via the function rtp_check_packet at /sngrep/src/rtp.c. This vulnerability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: openSUSE Leap 15.5 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6529 (see also SUSE bugzilla) Related CVEs: CVE-2024-23185 CVE-2024-23184 Upstream summary: Very large headers can cause resource exhaustion when parsing message. The message-parser normally reads reasonably sized chunks of the message. […]