opensuse
Latest CVEs
The 15 most recently published vulnerabilities affecting opensuse.
- CVE-2026-48864Libsolv: heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page data7.8
- CVE-2026-9149Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file6.5
- CVE-2026-9150Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums6.5
- CVE-2026-31431crypto: algif_aead - Revert to operating out-of-placeKEV7.8
- CVE-2026-25506MUNGE has a buffer overflow in message unpacking allows key leakage and credential forgery7.7
- CVE-2025-62875Local DoS in OpenSMTPD via UNIX domain socket smtpd.sock5.5
- CVE-2025-32463Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.KEV9.3
- CVE-2024-49505XSS vulnerability found in OpenSuse MirrorCache6.1
- CVE-2023-32182A Improper Link Resolution Before File Access ('Link Following') vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 pos...5.9
- CVE-2023-32184A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen Thi...7.8
- CVE-2023-32183Incorrect Default Permissions vulnerability in the openSUSE Tumbleweed hawk2 package allows users with access to the hacluster to escalate to root This issue affects openSUSE Tumbleweed. 7.8
- CVE-2023-22652Stack buffer overflow in "read_file" function3.3
- CVE-2023-32181Stack buffer overflow in "econf_writeFile" function3.3
- CVE-2022-45154supportconfig does not remove passwords in /etc/iscsi/iscsid.conf and /etc/target/lio_setup.sh4.4
- CVE-2022-45153saphanabootstrap-formula: Escalation to root for arbitrary users in hana/ha_cluster.sls7.0