OPENSUSE-SU-2026:10195-1 gimp-3.0.8-2.1 on GA media

These are all security issues fixed in the gimp-3.0.8-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10199-1 python311-pymssql-2.3.12-1.1 on GA media

These are all security issues fixed in the python311-pymssql-2.3.12-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10196-1 matrix-synapse-1.147.1-1.1 on GA media

These are all security issues fixed in the matrix-synapse-1.147.1-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10194-1 cargo-audit-advisory-db-20260213-1.1 on GA media

These are all security issues fixed in the cargo-audit-advisory-db-20260213-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10200-1 python310-3.10.19-4.1 on GA media

These are all security issues fixed in the python310-3.10.19-4.1 package on the GA media of openSUSE Tumbleweed...

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

github.com/sirupsen/logrus: github.com/sirupsen/logrus: Denial-of-Service due to large single-line payload

A denial-of-service vulnerability in github.com/sirupsen/logrus occurs when Entry.Writer processes a single-line payload larger than 64KB with no newline characters. Due to a limitation in Go’s internal bufio.Scanner, the read operation fails with a “token too long” error, causing the underlying...

CVE-2023-31323

Type confusion in the AMD Secure Processor ASP could allow an attacker to pass a malformed argument to the External Global Memory Interconnect Trusted Agent XGMI TA leading to a memory safety violation potentially resulting in loss of confidentiality, integrity, or availability...

CVE-2024-36319

Debug code left active in AMD's Video Decoder Engine Firmware VCN FW could allow a attacker to submit a maliciously crafted command causing the VCN FW to perform read/writes HW registers, potentially impacting confidentiality, integrity and availabilability of the system...

CVE-2023-31323

CVE-2023-31323 affects the AMD Secure Processor (ASP) with a Type confusion in the External Global Memory Interconnect Trusted Agent (XGMI TA). The issue can allow a malformed argument to be passed to XGMI TA, causing a memory safety violation and potential loss of confidentiality, integrity, or ...

CVE-2024-36319

Debug code left active in AMD's Video Decoder Engine Firmware VCN FW could allow a attacker to submit a maliciously crafted command causing the VCN FW to perform read/writes HW registers, potentially impacting confidentiality, integrity and availabilability of the system...

OPENSUSE-SU-2026:10183-1 build-20260202-2.1 on GA media

These are all security issues fixed in the build-20260202-2.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10187-1 haproxy-3.3.3+git0.465d8e2fc-1.1 on GA media

These are all security issues fixed in the haproxy-3.3.3+git0.465d8e2fc-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2026:10193-1 postgresql17-17.8-1.1 on GA media

These are all security issues fixed in the postgresql17-17.8-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2025-11004

The Simplicity Device Manager Tool has a Reflected XSS Cross-site-scripting vulnerability in several API endpoints. The attacker needs to be on the same network to execute this attack. These APIs can affect confidentiality, integrity, and availability of the system that has Simplicity Device...

DoS (Denial of Service) in Confluence Data Center and Server

This High severity DoS Denial of Service vulnerability known as CVE-2020-28469 was introduced in versions 7.19 of Confluence Data Center and Server. This DoS Denial of Service vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H allows an...

CVE-2024-36320

Integer Overflow within atihdwt6.sys can allow a local attacker to cause out of bound read/write potentially leading to loss of confidentiality, integrity and availability...

CVE-2023-20548

CVE-2023-20548 describes a TOCTOU race in the AMD Secure Processor (ASP) that could lead to memory corruption with impacts to integrity, confidentiality, and availability. Affected component is ASP; the underlying issue is a race condition between checks and usage that attackers could potentially...

CVE-2023-20548

A Time-of-check time-of-use TOCTOU race condition in the AMD Secure Processor ASP could allow an attacker to corrupt memory resulting in loss of integrity, confidentiality, or availability...