PT-2026-44785

These are all security issues fixed in the libsuricata8 0 5-8.0.5-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10877-1 helm3-3.21.0-2.1 on GA media

These are all security issues fixed in the helm3-3.21.0-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10879-1 libredwg-devel-0.13.4.8200-1.1 on GA media

These are all security issues fixed in the libredwg-devel-0.13.4.8200-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-44792

These are all security issues fixed in the gdk-pixbuf-loader-libheif-1.22.2-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10870-1 389-ds-3.1.4+e9d94d45a-1.1 on GA media

These are all security issues fixed in the 389-ds-3.1.4+e9d94d45a-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-44781

These are all security issues fixed in the libsuricata8 0 5-8.0.5-1.1 package on the GA media of openSUSE Tumbleweed...

beets-2.11.0-1.1 on GA media (moderate)

beets-2.11.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10865-1 Rating: moderate Cross-References: CVE-2026-42052 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the beets-2.11.0-1.1...

OPENSUSE-SU-2026:10876-1 helm-4.2.0-3.1 on GA media

These are all security issues fixed in the helm-4.2.0-3.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10871-1 amazon-ecs-init-1.103.2-1.1 on GA media

These are all security issues fixed in the amazon-ecs-init-1.103.2-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10884-1 ctdb-4.23.8+git.477.f78166bceed-1.1 on GA media

These are all security issues fixed in the ctdb-4.23.8+git.477.f78166bceed-1.1 package on the GA media of openSUSE Tumbleweed...

PT-2026-44779

These are all security issues fixed in the libsuricata8 0 5-8.0.5-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10881-1 libBasicUsageEnvironment2-2026.04.22-1.1 on GA media

These are all security issues fixed in the libBasicUsageEnvironment2-2026.04.22-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10873-1 azure-storage-azcopy-10.32.4-1.1 on GA media

These are all security issues fixed in the azure-storage-azcopy-10.32.4-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2026-45988

A flaw was found in the Linux kernel's rxrpc subsystem. When an rxrpc RESPONSE packet experiences a temporary processing failure, it may enter a partially decrypted state and be re-queued for another attempt. This incorrect handling of partially decrypted packets could lead to communication...

CVE-2026-40852

A highly authenticated attacker can alter the config generator injecting a payload into future created configurations. The device is not correctly checking this configuration value before passing it to an system execute leading to code execution. This can result in a total loss of confidentiality...

CVE-2026-40852

A highly authenticated attacker can alter the config generator injecting a payload into future created configurations. The device is not correctly checking this configuration value before passing it to an system execute leading to code execution. This can result in a total loss of confidentiality...

CVE-2026-40852

This CVE describes a code-execution vulnerability where a highly authenticated attacker can modify the config generator to inject a payload into future configurations. The device may pass the manipulated value to a system execute call, enabling code execution and potentially compromising confiden...

CVE-2026-40851

A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability...

EUVD-2026-32150

A local attacker can perform a confusion attack on the cfgparser via a specially crafted file on an USB stick leading to code execution. This can result in a total loss of confidentiality, integrity and availability...

CVE-2025-41669 Insufficient Verification of Data Authenticity

The Web-based Management allows a remote low privileged Engineer user to install additional APPs on the device downloaded from the PLCnext Store without implementing any data verification mechanism, leading to the capability for an Engineer user to reach arbitrary code execution with root...