OPENSUSE-SU-2026:10675-1 dpkg-1.22.22-1.1 on GA media

These are all security issues fixed in the dpkg-1.22.22-1.1 package on the GA media of openSUSE Tumbleweed...

EUVD-2014-8462

Malware in sbrugna...

Security update for dpkg

This update for dpkg fixes the following issues: CVE-2025-6297: Fixed cleanup for control member with restricted directories bsc1245573. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

SUSE-SU-2022:2689-1 Security update for dpkg

This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed directory traversal vulnerability in Dpkg::Source::Archive bsc1199944...

CVE-2014-8625

Multiple format string vulnerabilities in the parseerrormsg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in the 1 package or 2 architecture name...

Debian DSA-2466-1 : rails - XSS

Sergey Nartimov discovered that in Rails, a Ruby based framework for web development, when developers generate html options tags manually, user input concatenated with manually built tags may not be escaped and an attacker can inject arbitrary HTML into the document. %NASLMINLEVEL 70300 C Tenable...

dpkg directory traversal

Directory traversal on package content extraction...