syncthing-2.1.0-1.1 on GA media (moderate)

syncthing-2.1.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10764-1 Rating: moderate Cross-References: CVE-2020-11022 CVSS scores: CVE-2020-11022 SUSE : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

OPENSUSE-SU-2026:10764-1 syncthing-2.1.0-1.1 on GA media

These are all security issues fixed in the syncthing-2.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2026-32288 vulnerabilities

Vulnerabilities for packages: zot, extism, podman, rancher-fleet, ipfs-cluster, malcontent, helm-diff-fips, flux-source-watcher, helm, kyverno-fips, spegel-fips, docker-cli-buildx, keda-fips, dex, harbor-fips, azuredisk-csi-fips, dex-fips, kubescape-server-fips, kbld, syft, tekton-chains-fips,...

GHSA-X4JJ-H2V8-HQQV vulnerabilities

Vulnerabilities for packages: zot, extism, podman, rancher-fleet, ipfs-cluster, malcontent, helm-diff-fips, flux-source-watcher, helm, kyverno-fips, spegel-fips, docker-cli-buildx, keda-fips, dex, harbor-fips, azuredisk-csi-fips, dex-fips, kubescape-server-fips, kbld, syft, tekton-chains-fips,...

GHSA-G754-HX8W-X2G6 vulnerabilities

Vulnerabilities for packages: syncthing, caddy, traefik, k8sgateway, buf, syncthing-fips, q, kubo, ipfs-cluster, k3s, seaweedfs, teleport, kubo-fips, dkron-fips, frp, coredns, caddy-fips, kargo, spegel-fips, seaweedfs-fips, ipfs-cluster-fips, traefik-fips, kubernetes-dns-node-cache-fips,...

CVE-2025-64702 vulnerabilities

Vulnerabilities for packages: syncthing, caddy, traefik, k8sgateway, buf, syncthing-fips, q, kubo, ipfs-cluster, k3s, seaweedfs, teleport, kubo-fips, dkron-fips, frp, coredns, caddy-fips, kargo, spegel-fips, seaweedfs-fips, ipfs-cluster-fips, traefik-fips, kubernetes-dns-node-cache-fips,...

EUVD-2021-1226

Malware in sbrugna...

EUVD-2022-1945

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-21404

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Syncthing is a continuous file synchronization program. In Syncthing before version 1.15.0, the relay server strelaysrv can be caused to crash and exit by sendi...

Fedora: Security Advisory (FEDORA-2024-aa6e72c713)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-1000420

Syncthing version 0.14.33 and older is vulnerable to symlink traversal resulting in arbitrary file overwrite...

Linux Distros Unpatched Vulnerability : CVE-2022-46165

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Syncthing is an open source, continuous file synchronization program. In versions prior to 1.23.5 a compromised instance with shared folders could sync maliciou...

Fedora 41 : syncthing (2024-aa6e72c713)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-aa6e72c713 advisory. Update to version 1.28.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.28.0 Tenable has extracted the preceding description...

[SECURITY] Fedora 40 Update: syncthing-1.28.0-1.fc40

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

[SECURITY] Fedora 41 Update: syncthing-1.28.0-1.fc41

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

[SECURITY] Fedora 39 Update: syncthing-1.28.0-1.fc39

Syncthing replaces other file synchronization services with something open, trustworthy and decentralized. Your data is your data alone and you deserve to choose where it is stored, if it is shared with some third party and how it's transmitted over the Internet. Using syncthing, that control is...

Fedora: Security Advisory (FEDORA-2024-4d24786142)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-4fc7cdc194)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 39 : syncthing (2024-4fc7cdc194)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4fc7cdc194 advisory. Update to version 1.28.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.28.0 Tenable has extracted the preceding description...

Fedora 40 : syncthing (2024-4d24786142)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4d24786142 advisory. Update to version 1.28.0. Release notes: https://github.com/syncthing/syncthing/releases/tag/v1.28.0 Tenable has extracted the preceding description...