Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-24051 (GCVE-0-2026-24051)
Vulnerability from cvelistv5 – Published: 2026-02-02 19:49 – Updated: 2026-02-03 14:54
VLAI
EPSS
Title
OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking
Summary
OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-426 - Untrusted Search Path
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://github.com/open-telemetry/opentelemetry-g… | x_refsource_CONFIRM |
| https://github.com/open-telemetry/opentelemetry-g… | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| open-telemetry | opentelemetry-go |
Affected:
>= 1.21.0, < 1.40.0
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-24051",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-03T14:53:50.389773Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-03T14:54:41.668Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "opentelemetry-go",
"vendor": "open-telemetry",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.21.0, \u003c 1.40.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-426",
"description": "CWE-426: Untrusted Search Path",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-02-02T19:49:10.038Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq"
},
{
"name": "https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53"
}
],
"source": {
"advisory": "GHSA-9h8m-3fm2-qjrq",
"discovery": "UNKNOWN"
},
"title": "OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-24051",
"datePublished": "2026-02-02T19:49:10.038Z",
"dateReserved": "2026-01-20T22:30:11.778Z",
"dateUpdated": "2026-02-03T14:54:41.668Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-24051",
"date": "2026-06-07",
"epss": "0.00017",
"percentile": "0.04274"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-24051\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-02-02T23:16:07.963\",\"lastModified\":\"2026-02-27T20:32:10.693\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.\"},{\"lang\":\"es\",\"value\":\"OpenTelemetry-Go es la implementaci\u00f3n de Go de OpenTelemetry. El SDK de Go de OpenTelemetry en la versi\u00f3n v1.20.0-1.39.0 es vulnerable a Secuestro de Ruta (Rutas de B\u00fasqueda No Confiables) en sistemas macOS/Darwin. El c\u00f3digo de detecci\u00f3n de recursos en sdk/resource/host_id.go ejecuta el comando de sistema ioreg utilizando una ruta de b\u00fasqueda. Un atacante con la capacidad de modificar localmente la variable de entorno PATH puede lograr Ejecuci\u00f3n de C\u00f3digo Arbitrario (ACE) dentro del contexto de la aplicaci\u00f3n. Una correcci\u00f3n fue lanzada con la v1.40.0.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.0,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.0,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-426\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linuxfoundation:opentelemetry-go:*:*:*:*:*:go:*:*\",\"versionStartIncluding\":\"1.21.0\",\"versionEndExcluding\":\"1.40.0\",\"matchCriteriaId\":\"D2F3A3DE-73A9-48D9-B3CB-4DE1FB82314B\"}]}]}],\"references\":[{\"url\":\"https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-24051\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-03T14:53:50.389773Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-03T14:54:37.009Z\"}}], \"cna\": {\"title\": \"OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking\", \"source\": {\"advisory\": \"GHSA-9h8m-3fm2-qjrq\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"open-telemetry\", \"product\": \"opentelemetry-go\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 1.21.0, \u003c 1.40.0\"}]}], \"references\": [{\"url\": \"https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq\", \"name\": \"https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53\", \"name\": \"https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-426\", \"description\": \"CWE-426: Untrusted Search Path\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-02-02T19:49:10.038Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-24051\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-02-03T14:54:41.668Z\", \"dateReserved\": \"2026-01-20T22:30:11.778Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-02-02T19:49:10.038Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
cleanstart-2026-wo87803
Vulnerability from cleanstart
Published
2026-04-01 09:21
Modified
2026-03-25 11:12
Summary
Security fixes for CVE-2025-15558, CVE-2025-47907, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68119, CVE-2026-1229, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-273p-m2cw-6833, ghsa-2x5j-vhc8-9cwm, ghsa-4c4x-jm2x-pf9j, ghsa-4qg8-fj49-pxjh, ghsa-59jp-pj84-45mr, ghsa-6m8w-jc87-6cr7, ghsa-846p-jg2w-w324, ghsa-f83f-xpx7-ffpw, ghsa-fcv2-xgw5-pqxf, ghsa-fphv-w9fq-2525, ghsa-jqc5-w2xx-5vq4, ghsa-vvgc-356p-c3xw, ghsa-whqx-f9j3-ch6m applied in versions: 1.14.4-r1, 1.14.4-r2, 1.16.1-r2, 1.16.1-r3
Details
Multiple security vulnerabilities affect the kyverno-fips package. These issues are resolved in later releases. See references for individual vulnerability details.
References
{
"affected": [
{
"package": {
"ecosystem": "CleanStart",
"name": "kyverno-fips"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.16.1-r3"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"credits": [],
"database_specific": {},
"details": "Multiple security vulnerabilities affect the kyverno-fips package. These issues are resolved in later releases. See references for individual vulnerability details.",
"id": "CLEANSTART-2026-WO87803",
"modified": "2026-03-25T11:12:09Z",
"published": "2026-04-01T09:21:04.385167Z",
"references": [
{
"type": "ADVISORY",
"url": "https://github.com/cleanstart-dev/cleanstart-security-advisories/tree/main/advisories/2026/CLEANSTART-2026-WO87803.json"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-15558"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-47907"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-61726"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-61728"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-61730"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2025-68119"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-1229"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-24051"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-25679"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-27139"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-27142"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/CVE-2026-33186"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-273p-m2cw-6833"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-2x5j-vhc8-9cwm"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-4c4x-jm2x-pf9j"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-4qg8-fj49-pxjh"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-59jp-pj84-45mr"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-6m8w-jc87-6cr7"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-846p-jg2w-w324"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-f83f-xpx7-ffpw"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-fcv2-xgw5-pqxf"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-fphv-w9fq-2525"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-jqc5-w2xx-5vq4"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-vvgc-356p-c3xw"
},
{
"type": "WEB",
"url": "https://osv.dev/vulnerability/ghsa-whqx-f9j3-ch6m"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-15558"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47907"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61730"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68119"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1229"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24051"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27139"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27142"
},
{
"type": "WEB",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
}
],
"related": [],
"schema_version": "1.7.3",
"summary": "Security fixes for CVE-2025-15558, CVE-2025-47907, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68119, CVE-2026-1229, CVE-2026-24051, CVE-2026-25679, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186, ghsa-273p-m2cw-6833, ghsa-2x5j-vhc8-9cwm, ghsa-4c4x-jm2x-pf9j, ghsa-4qg8-fj49-pxjh, ghsa-59jp-pj84-45mr, ghsa-6m8w-jc87-6cr7, ghsa-846p-jg2w-w324, ghsa-f83f-xpx7-ffpw, ghsa-fcv2-xgw5-pqxf, ghsa-fphv-w9fq-2525, ghsa-jqc5-w2xx-5vq4, ghsa-vvgc-356p-c3xw, ghsa-whqx-f9j3-ch6m applied in versions: 1.14.4-r1, 1.14.4-r2, 1.16.1-r2, 1.16.1-r3",
"upstream": [
"CVE-2025-15558",
"CVE-2025-47907",
"CVE-2025-61726",
"CVE-2025-61728",
"CVE-2025-61730",
"CVE-2025-68119",
"CVE-2026-1229",
"CVE-2026-24051",
"CVE-2026-25679",
"CVE-2026-27139",
"CVE-2026-27142",
"CVE-2026-33186",
"ghsa-273p-m2cw-6833",
"ghsa-2x5j-vhc8-9cwm",
"ghsa-4c4x-jm2x-pf9j",
"ghsa-4qg8-fj49-pxjh",
"ghsa-59jp-pj84-45mr",
"ghsa-6m8w-jc87-6cr7",
"ghsa-846p-jg2w-w324",
"ghsa-f83f-xpx7-ffpw",
"ghsa-fcv2-xgw5-pqxf",
"ghsa-fphv-w9fq-2525",
"ghsa-jqc5-w2xx-5vq4",
"ghsa-vvgc-356p-c3xw",
"ghsa-whqx-f9j3-ch6m"
]
}
FKIE_CVE-2026-24051
Vulnerability from fkie_nvd - Published: 2026-02-02 23:16 - Updated: 2026-02-27 20:32
Severity
Summary
OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linuxfoundation | opentelemetry-go | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:linuxfoundation:opentelemetry-go:*:*:*:*:*:go:*:*",
"matchCriteriaId": "D2F3A3DE-73A9-48D9-B3CB-4DE1FB82314B",
"versionEndExcluding": "1.40.0",
"versionStartIncluding": "1.21.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0."
},
{
"lang": "es",
"value": "OpenTelemetry-Go es la implementaci\u00f3n de Go de OpenTelemetry. El SDK de Go de OpenTelemetry en la versi\u00f3n v1.20.0-1.39.0 es vulnerable a Secuestro de Ruta (Rutas de B\u00fasqueda No Confiables) en sistemas macOS/Darwin. El c\u00f3digo de detecci\u00f3n de recursos en sdk/resource/host_id.go ejecuta el comando de sistema ioreg utilizando una ruta de b\u00fasqueda. Un atacante con la capacidad de modificar localmente la variable de entorno PATH puede lograr Ejecuci\u00f3n de C\u00f3digo Arbitrario (ACE) dentro del contexto de la aplicaci\u00f3n. Una correcci\u00f3n fue lanzada con la v1.40.0."
}
],
"id": "CVE-2026-24051",
"lastModified": "2026-02-27T20:32:10.693",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9,
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2026-02-02T23:16:07.963",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53"
},
{
"source": "security-advisories@github.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-426"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
GHSA-9H8M-3FM2-QJRQ
Vulnerability from github – Published: 2026-02-02 20:07 – Updated: 2026-02-27 21:39
VLAI
Summary
OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking
Details
Impact
The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application.
Patches
This has been patched in d45961b, which was released with v1.40.0.
References
Severity
7.0 (High)
{
"affected": [
{
"package": {
"ecosystem": "Go",
"name": "go.opentelemetry.io/otel/sdk"
},
"ranges": [
{
"events": [
{
"introduced": "1.21.0"
},
{
"fixed": "1.40.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2026-24051"
],
"database_specific": {
"cwe_ids": [
"CWE-426"
],
"github_reviewed": true,
"github_reviewed_at": "2026-02-02T20:07:46Z",
"nvd_published_at": "2026-02-02T23:16:07Z",
"severity": "HIGH"
},
"details": "### Impact\nThe OpenTelemetry Go SDK in version `v1.20.0`-`1.39.0` is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in `sdk/resource/host_id.go` executes the `ioreg` system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application.\n\n### Patches\nThis has been patched in [d45961b](https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53), which was released with `v1.40.0`.\n\n### References\n- [CWE-426: Untrusted Search Path](https://cwe.mitre.org/data/definitions/426.html)",
"id": "GHSA-9h8m-3fm2-qjrq",
"modified": "2026-02-27T21:39:46Z",
"published": "2026-02-02T20:07:46Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/open-telemetry/opentelemetry-go/security/advisories/GHSA-9h8m-3fm2-qjrq"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24051"
},
{
"type": "WEB",
"url": "https://github.com/open-telemetry/opentelemetry-go/commit/d45961bcda453fcbdb6469c22d6e88a1f9970a53"
},
{
"type": "PACKAGE",
"url": "https://github.com/open-telemetry/opentelemetry-go"
},
{
"type": "WEB",
"url": "https://pkg.go.dev/vuln/GO-2026-4394"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
],
"summary": "OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking"
}
MSRC_CVE-2026-24051
Vulnerability from csaf_microsoft - Published: 2026-02-02 00:00 - Updated: 2026-04-30 01:55Summary
OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
CWE-426
- Untrusted Search Path
Affected products
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17084-1 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2026/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2026-24051 OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-24051.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking",
"tracking": {
"current_release_date": "2026-04-30T01:55:30.000Z",
"generator": {
"date": "2026-04-30T12:29:29.426Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2026-24051",
"initial_release_date": "2026-02-02T00:00:00.000Z",
"revision_history": [
{
"date": "2026-04-29T01:11:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2026-04-30T01:55:30.000Z",
"legacy_version": "2",
"number": "2",
"summary": "Information published."
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"category": "product_name",
"name": "azl3 ignition-flatcar 0:2.22.0-1.azl3",
"product": {
"name": "azl3 ignition-flatcar 0:2.22.0-1.azl3",
"product_id": "1"
}
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 ignition-flatcar 0:2.22.0-1.azl3 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-24051",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"17084-1"
]
}
],
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"known_not_affected": [
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-24051 OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-24051.json"
}
],
"title": "OpenTelemetry-Go Affected by Arbitrary Code Execution via PATH Hijacking"
}
]
}
OPENSUSE-SU-2026:10396-1
Vulnerability from csaf_opensuse - Published: 2026-03-20 00:00 - Updated: 2026-03-20 00:00Summary
openbao-2.5.1-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: openbao-2.5.1-1.1 on GA media
Description of the patch: These are all security issues fixed in the openbao-2.5.1-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10396
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.4 (High)
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2025-68121/ | self |
| https://www.suse.com/security/cve/CVE-2026-24051/ | self |
| https://www.suse.com/security/cve/CVE-2025-68121 | external |
| https://bugzilla.suse.com/1256818 | external |
| https://www.suse.com/security/cve/CVE-2026-24051 | external |
| https://bugzilla.suse.com/1259133 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "openbao-2.5.1-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the openbao-2.5.1-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10396",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10396-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68121 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68121/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24051 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24051/"
}
],
"title": "openbao-2.5.1-1.1 on GA media",
"tracking": {
"current_release_date": "2026-03-20T00:00:00Z",
"generator": {
"date": "2026-03-20T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10396-1",
"initial_release_date": "2026-03-20T00:00:00Z",
"revision_history": [
{
"date": "2026-03-20T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "openbao-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-2.5.1-1.1.aarch64",
"product_id": "openbao-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-agent-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-agent-2.5.1-1.1.aarch64",
"product_id": "openbao-agent-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"product_id": "openbao-cassandra-database-plugin-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"product_id": "openbao-influxdb-database-plugin-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"product_id": "openbao-mysql-database-plugin-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"product_id": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"product_id": "openbao-postgresql-database-plugin-2.5.1-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "openbao-server-2.5.1-1.1.aarch64",
"product": {
"name": "openbao-server-2.5.1-1.1.aarch64",
"product_id": "openbao-server-2.5.1-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openbao-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-2.5.1-1.1.ppc64le",
"product_id": "openbao-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-agent-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-agent-2.5.1-1.1.ppc64le",
"product_id": "openbao-agent-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"product_id": "openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"product_id": "openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"product_id": "openbao-mysql-database-plugin-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"product_id": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"product_id": "openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "openbao-server-2.5.1-1.1.ppc64le",
"product": {
"name": "openbao-server-2.5.1-1.1.ppc64le",
"product_id": "openbao-server-2.5.1-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openbao-2.5.1-1.1.s390x",
"product": {
"name": "openbao-2.5.1-1.1.s390x",
"product_id": "openbao-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-agent-2.5.1-1.1.s390x",
"product": {
"name": "openbao-agent-2.5.1-1.1.s390x",
"product_id": "openbao-agent-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"product": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"product_id": "openbao-cassandra-database-plugin-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"product": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"product_id": "openbao-influxdb-database-plugin-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"product": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"product_id": "openbao-mysql-database-plugin-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"product": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"product_id": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"product": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"product_id": "openbao-postgresql-database-plugin-2.5.1-1.1.s390x"
}
},
{
"category": "product_version",
"name": "openbao-server-2.5.1-1.1.s390x",
"product": {
"name": "openbao-server-2.5.1-1.1.s390x",
"product_id": "openbao-server-2.5.1-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openbao-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-2.5.1-1.1.x86_64",
"product_id": "openbao-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-agent-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-agent-2.5.1-1.1.x86_64",
"product_id": "openbao-agent-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"product_id": "openbao-cassandra-database-plugin-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"product_id": "openbao-influxdb-database-plugin-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"product_id": "openbao-mysql-database-plugin-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"product_id": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"product_id": "openbao-postgresql-database-plugin-2.5.1-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "openbao-server-2.5.1-1.1.x86_64",
"product": {
"name": "openbao-server-2.5.1-1.1.x86_64",
"product_id": "openbao-server-2.5.1-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x"
},
"product_reference": "openbao-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-agent-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-agent-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-agent-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-agent-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-agent-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x"
},
"product_reference": "openbao-agent-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-agent-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-agent-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x"
},
"product_reference": "openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-cassandra-database-plugin-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x"
},
"product_reference": "openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-influxdb-database-plugin-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x"
},
"product_reference": "openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-database-plugin-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x"
},
"product_reference": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x"
},
"product_reference": "openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-postgresql-database-plugin-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-server-2.5.1-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64"
},
"product_reference": "openbao-server-2.5.1-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-server-2.5.1-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le"
},
"product_reference": "openbao-server-2.5.1-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-server-2.5.1-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x"
},
"product_reference": "openbao-server-2.5.1-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openbao-server-2.5.1-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
},
"product_reference": "openbao-server-2.5.1-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-68121",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68121"
}
],
"notes": [
{
"category": "general",
"text": "During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succeed when it should have failed. This may happen when a user calls Config.Clone and mutates the returned Config, or uses Config.GetConfigForClient. This can cause a client to resume a session with a server that it would not have resumed with during the initial handshake, or cause a server to resume a session with a client that it would not have resumed with during the initial handshake.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68121",
"url": "https://www.suse.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "SUSE Bug 1256818 for CVE-2025-68121",
"url": "https://bugzilla.suse.com/1256818"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-20T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-68121"
},
{
"cve": "CVE-2026-24051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24051"
}
],
"notes": [
{
"category": "general",
"text": "OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24051",
"url": "https://www.suse.com/security/cve/CVE-2026-24051"
},
{
"category": "external",
"summary": "SUSE Bug 1259133 for CVE-2026-24051",
"url": "https://bugzilla.suse.com/1259133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:openbao-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-agent-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-cassandra-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-influxdb-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-mysql-legacy-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-postgresql-database-plugin-2.5.1-1.1.x86_64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.aarch64",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.ppc64le",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.s390x",
"openSUSE Tumbleweed:openbao-server-2.5.1-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-03-20T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-24051"
}
]
}
OPENSUSE-SU-2026:10613-1
Vulnerability from csaf_opensuse - Published: 2026-04-25 00:00 - Updated: 2026-04-25 00:00Summary
kyverno-1.17.2-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: kyverno-1.17.2-1.1 on GA media
Description of the patch: These are all security issues fixed in the kyverno-1.17.2-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10613
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.8 (Critical)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
References
15 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2026-1229/ | self |
| https://www.suse.com/security/cve/CVE-2026-24051/ | self |
| https://www.suse.com/security/cve/CVE-2026-33186/ | self |
| https://www.suse.com/security/cve/CVE-2026-34986/ | self |
| https://www.suse.com/security/cve/CVE-2026-4789/ | self |
| https://www.suse.com/security/cve/CVE-2026-1229 | external |
| https://www.suse.com/security/cve/CVE-2026-24051 | external |
| https://bugzilla.suse.com/1259133 | external |
| https://www.suse.com/security/cve/CVE-2026-33186 | external |
| https://bugzilla.suse.com/1260085 | external |
| https://www.suse.com/security/cve/CVE-2026-34986 | external |
| https://www.suse.com/security/cve/CVE-2026-4789 | external |
| https://bugzilla.suse.com/1261190 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kyverno-1.17.2-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kyverno-1.17.2-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10613",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10613-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-1229 page",
"url": "https://www.suse.com/security/cve/CVE-2026-1229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24051 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-4789 page",
"url": "https://www.suse.com/security/cve/CVE-2026-4789/"
}
],
"title": "kyverno-1.17.2-1.1 on GA media",
"tracking": {
"current_release_date": "2026-04-25T00:00:00Z",
"generator": {
"date": "2026-04-25T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10613-1",
"initial_release_date": "2026-04-25T00:00:00Z",
"revision_history": [
{
"date": "2026-04-25T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kyverno-1.17.2-1.1.aarch64",
"product": {
"name": "kyverno-1.17.2-1.1.aarch64",
"product_id": "kyverno-1.17.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kyverno-bash-completion-1.17.2-1.1.aarch64",
"product": {
"name": "kyverno-bash-completion-1.17.2-1.1.aarch64",
"product_id": "kyverno-bash-completion-1.17.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kyverno-fish-completion-1.17.2-1.1.aarch64",
"product": {
"name": "kyverno-fish-completion-1.17.2-1.1.aarch64",
"product_id": "kyverno-fish-completion-1.17.2-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "kyverno-zsh-completion-1.17.2-1.1.aarch64",
"product": {
"name": "kyverno-zsh-completion-1.17.2-1.1.aarch64",
"product_id": "kyverno-zsh-completion-1.17.2-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kyverno-1.17.2-1.1.ppc64le",
"product": {
"name": "kyverno-1.17.2-1.1.ppc64le",
"product_id": "kyverno-1.17.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kyverno-bash-completion-1.17.2-1.1.ppc64le",
"product": {
"name": "kyverno-bash-completion-1.17.2-1.1.ppc64le",
"product_id": "kyverno-bash-completion-1.17.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kyverno-fish-completion-1.17.2-1.1.ppc64le",
"product": {
"name": "kyverno-fish-completion-1.17.2-1.1.ppc64le",
"product_id": "kyverno-fish-completion-1.17.2-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"product": {
"name": "kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"product_id": "kyverno-zsh-completion-1.17.2-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kyverno-1.17.2-1.1.s390x",
"product": {
"name": "kyverno-1.17.2-1.1.s390x",
"product_id": "kyverno-1.17.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kyverno-bash-completion-1.17.2-1.1.s390x",
"product": {
"name": "kyverno-bash-completion-1.17.2-1.1.s390x",
"product_id": "kyverno-bash-completion-1.17.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kyverno-fish-completion-1.17.2-1.1.s390x",
"product": {
"name": "kyverno-fish-completion-1.17.2-1.1.s390x",
"product_id": "kyverno-fish-completion-1.17.2-1.1.s390x"
}
},
{
"category": "product_version",
"name": "kyverno-zsh-completion-1.17.2-1.1.s390x",
"product": {
"name": "kyverno-zsh-completion-1.17.2-1.1.s390x",
"product_id": "kyverno-zsh-completion-1.17.2-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kyverno-1.17.2-1.1.x86_64",
"product": {
"name": "kyverno-1.17.2-1.1.x86_64",
"product_id": "kyverno-1.17.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kyverno-bash-completion-1.17.2-1.1.x86_64",
"product": {
"name": "kyverno-bash-completion-1.17.2-1.1.x86_64",
"product_id": "kyverno-bash-completion-1.17.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kyverno-fish-completion-1.17.2-1.1.x86_64",
"product": {
"name": "kyverno-fish-completion-1.17.2-1.1.x86_64",
"product_id": "kyverno-fish-completion-1.17.2-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "kyverno-zsh-completion-1.17.2-1.1.x86_64",
"product": {
"name": "kyverno-zsh-completion-1.17.2-1.1.x86_64",
"product_id": "kyverno-zsh-completion-1.17.2-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-1.17.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64"
},
"product_reference": "kyverno-1.17.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-1.17.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le"
},
"product_reference": "kyverno-1.17.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-1.17.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x"
},
"product_reference": "kyverno-1.17.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-1.17.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64"
},
"product_reference": "kyverno-1.17.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-bash-completion-1.17.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64"
},
"product_reference": "kyverno-bash-completion-1.17.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-bash-completion-1.17.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le"
},
"product_reference": "kyverno-bash-completion-1.17.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-bash-completion-1.17.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x"
},
"product_reference": "kyverno-bash-completion-1.17.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-bash-completion-1.17.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64"
},
"product_reference": "kyverno-bash-completion-1.17.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-fish-completion-1.17.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64"
},
"product_reference": "kyverno-fish-completion-1.17.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-fish-completion-1.17.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le"
},
"product_reference": "kyverno-fish-completion-1.17.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-fish-completion-1.17.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x"
},
"product_reference": "kyverno-fish-completion-1.17.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-fish-completion-1.17.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64"
},
"product_reference": "kyverno-fish-completion-1.17.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-zsh-completion-1.17.2-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64"
},
"product_reference": "kyverno-zsh-completion-1.17.2-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-zsh-completion-1.17.2-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le"
},
"product_reference": "kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-zsh-completion-1.17.2-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x"
},
"product_reference": "kyverno-zsh-completion-1.17.2-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kyverno-zsh-completion-1.17.2-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
},
"product_reference": "kyverno-zsh-completion-1.17.2-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-1229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-1229"
}
],
"notes": [
{
"category": "general",
"text": "The CombinedMult function in the CIRCL ecc/p384 package (secp384r1 curve) produces an incorrect value for specific inputs. The issue is fixed by using complete addition formulas.\nECDH and ECDSA signing relying on this curve are not affected.\n\nThe bug was fixed in v1.6.3 https://github.com/cloudflare/circl/releases/tag/v1.6.3 .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-1229",
"url": "https://www.suse.com/security/cve/CVE-2026-1229"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-25T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2026-1229"
},
{
"cve": "CVE-2026-24051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24051"
}
],
"notes": [
{
"category": "general",
"text": "OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24051",
"url": "https://www.suse.com/security/cve/CVE-2026-24051"
},
{
"category": "external",
"summary": "SUSE Bug 1259133 for CVE-2026-24051",
"url": "https://bugzilla.suse.com/1259133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-24051"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-25T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-4789",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-4789"
}
],
"notes": [
{
"category": "general",
"text": "Kyverno, versions 1.16.0 and later, are vulnerable to SSRF due to unrestricted CEL HTTP functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-4789",
"url": "https://www.suse.com/security/cve/CVE-2026-4789"
},
{
"category": "external",
"summary": "SUSE Bug 1261190 for CVE-2026-4789",
"url": "https://bugzilla.suse.com/1261190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-bash-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-fish-completion-1.17.2-1.1.x86_64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.aarch64",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.ppc64le",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.s390x",
"openSUSE Tumbleweed:kyverno-zsh-completion-1.17.2-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-25T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2026-4789"
}
]
}
OPENSUSE-SU-2026:10684-1
Vulnerability from csaf_opensuse - Published: 2026-05-04 00:00 - Updated: 2026-05-04 00:00Summary
teleport-17.7.23-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: teleport-17.7.23-1.1 on GA media
Description of the patch: These are all security issues fixed in the teleport-17.7.23-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10684
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
52 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2025-15558/ | self |
| https://www.suse.com/security/cve/CVE-2026-24051/ | self |
| https://www.suse.com/security/cve/CVE-2026-34165/ | self |
| https://www.suse.com/security/cve/CVE-2026-4427/ | self |
| https://www.suse.com/security/cve/CVE-2025-15558 | external |
| https://www.suse.com/security/cve/CVE-2026-24051 | external |
| https://bugzilla.suse.com/1259133 | external |
| https://www.suse.com/security/cve/CVE-2026-34165 | external |
| https://www.suse.com/security/cve/CVE-2026-4427 | external |
| https://bugzilla.suse.com/1259910 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "teleport-17.7.23-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the teleport-17.7.23-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10684",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10684-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-15558 page",
"url": "https://www.suse.com/security/cve/CVE-2025-15558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24051 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24051/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34165 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-4427 page",
"url": "https://www.suse.com/security/cve/CVE-2026-4427/"
}
],
"title": "teleport-17.7.23-1.1 on GA media",
"tracking": {
"current_release_date": "2026-05-04T00:00:00Z",
"generator": {
"date": "2026-05-04T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10684-1",
"initial_release_date": "2026-05-04T00:00:00Z",
"revision_history": [
{
"date": "2026-05-04T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "teleport-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-17.7.23-1.1.aarch64",
"product_id": "teleport-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-bash-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-bash-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-bash-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"product_id": "teleport-fdpass-teleport-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tbot-17.7.23-1.1.aarch64",
"product_id": "teleport-tbot-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tbot-bash-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tbot-zsh-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tctl-17.7.23-1.1.aarch64",
"product_id": "teleport-tctl-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tctl-bash-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tctl-zsh-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tsh-17.7.23-1.1.aarch64",
"product_id": "teleport-tsh-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tsh-bash-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-tsh-zsh-completion-17.7.23-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "teleport-zsh-completion-17.7.23-1.1.aarch64",
"product": {
"name": "teleport-zsh-completion-17.7.23-1.1.aarch64",
"product_id": "teleport-zsh-completion-17.7.23-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "teleport-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-17.7.23-1.1.ppc64le",
"product_id": "teleport-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-bash-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-bash-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-bash-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"product_id": "teleport-fdpass-teleport-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tbot-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tbot-17.7.23-1.1.ppc64le",
"product_id": "teleport-tbot-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tbot-bash-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tctl-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tctl-17.7.23-1.1.ppc64le",
"product_id": "teleport-tctl-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tctl-bash-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tsh-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tsh-17.7.23-1.1.ppc64le",
"product_id": "teleport-tsh-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tsh-bash-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "teleport-zsh-completion-17.7.23-1.1.ppc64le",
"product": {
"name": "teleport-zsh-completion-17.7.23-1.1.ppc64le",
"product_id": "teleport-zsh-completion-17.7.23-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "teleport-17.7.23-1.1.s390x",
"product": {
"name": "teleport-17.7.23-1.1.s390x",
"product_id": "teleport-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-bash-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-bash-completion-17.7.23-1.1.s390x",
"product_id": "teleport-bash-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-fdpass-teleport-17.7.23-1.1.s390x",
"product": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.s390x",
"product_id": "teleport-fdpass-teleport-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tbot-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tbot-17.7.23-1.1.s390x",
"product_id": "teleport-tbot-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tbot-bash-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tbot-zsh-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tctl-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tctl-17.7.23-1.1.s390x",
"product_id": "teleport-tctl-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tctl-bash-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tctl-zsh-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tsh-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tsh-17.7.23-1.1.s390x",
"product_id": "teleport-tsh-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tsh-bash-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"product_id": "teleport-tsh-zsh-completion-17.7.23-1.1.s390x"
}
},
{
"category": "product_version",
"name": "teleport-zsh-completion-17.7.23-1.1.s390x",
"product": {
"name": "teleport-zsh-completion-17.7.23-1.1.s390x",
"product_id": "teleport-zsh-completion-17.7.23-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "teleport-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-17.7.23-1.1.x86_64",
"product_id": "teleport-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-bash-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-bash-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-bash-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"product_id": "teleport-fdpass-teleport-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tbot-17.7.23-1.1.x86_64",
"product_id": "teleport-tbot-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tbot-bash-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tbot-zsh-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tctl-17.7.23-1.1.x86_64",
"product_id": "teleport-tctl-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tctl-bash-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tctl-zsh-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tsh-17.7.23-1.1.x86_64",
"product_id": "teleport-tsh-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tsh-bash-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-tsh-zsh-completion-17.7.23-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "teleport-zsh-completion-17.7.23-1.1.x86_64",
"product": {
"name": "teleport-zsh-completion-17.7.23-1.1.x86_64",
"product_id": "teleport-zsh-completion-17.7.23-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x"
},
"product_reference": "teleport-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-bash-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-bash-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-bash-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-bash-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-bash-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-bash-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-bash-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-bash-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x"
},
"product_reference": "teleport-fdpass-teleport-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-fdpass-teleport-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tbot-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tbot-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tbot-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tbot-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-bash-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tbot-zsh-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tctl-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tctl-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tctl-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tctl-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-bash-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tctl-zsh-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tsh-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tsh-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tsh-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tsh-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-bash-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-tsh-zsh-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-zsh-completion-17.7.23-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64"
},
"product_reference": "teleport-zsh-completion-17.7.23-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-zsh-completion-17.7.23-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le"
},
"product_reference": "teleport-zsh-completion-17.7.23-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-zsh-completion-17.7.23-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x"
},
"product_reference": "teleport-zsh-completion-17.7.23-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "teleport-zsh-completion-17.7.23-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
},
"product_reference": "teleport-zsh-completion-17.7.23-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-15558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-15558"
}
],
"notes": [
{
"category": "general",
"text": "Docker CLI for Windows searches for plugin binaries in C:\\ProgramData\\Docker\\cli-plugins, a directory that does not exist by default. A low-privileged attacker can create this directory and place malicious CLI plugin binaries (docker-compose.exe, docker-buildx.exe, etc.) that are executed when a victim user opens Docker Desktop or invokes Docker CLI plugin features, and allow privilege-escalation if the docker CLI is executed as a privileged user.\n\nThis issue affects Docker CLI: through 29.1.5 and Windows binaries acting as a CLI-plugin manager using the github.com/docker/cli/cli-plugins/manager https://pkg.go.dev/github.com/docker/cli@v29.1.5+incompatible/cli-plugins/manager package, such as Docker Compose.\n\nThis issue does not impact non-Windows binaries, and projects not using the plugin-manager code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-15558",
"url": "https://www.suse.com/security/cve/CVE-2025-15558"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-04T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-15558"
},
{
"cve": "CVE-2026-24051",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24051"
}
],
"notes": [
{
"category": "general",
"text": "OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking (Untrusted Search Paths) on macOS/Darwin systems. The resource detection code in sdk/resource/host_id.go executes the ioreg system command using a search path. An attacker with the ability to locally modify the PATH environment variable can achieve Arbitrary Code Execution (ACE) within the context of the application. A fix was released with v1.40.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24051",
"url": "https://www.suse.com/security/cve/CVE-2026-24051"
},
{
"category": "external",
"summary": "SUSE Bug 1259133 for CVE-2026-24051",
"url": "https://bugzilla.suse.com/1259133"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-04T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-24051"
},
{
"cve": "CVE-2026-34165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34165"
}
],
"notes": [
{
"category": "general",
"text": "go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before version 5.17.1, a vulnerability has been identified in which a maliciously crafted .idx file can cause asymmetric memory consumption, potentially exhausting available memory and resulting in a denial-of-service (DoS) condition. Exploitation requires write access to the local repository\u0027s .git directory, it order to create or alter existing .idx files. This issue has been patched in version 5.17.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34165",
"url": "https://www.suse.com/security/cve/CVE-2026-34165"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-04T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2026-34165"
},
{
"cve": "CVE-2026-4427",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-4427"
}
],
"notes": [
{
"category": "general",
"text": "Duplicate of CVE-2026-32286",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-4427",
"url": "https://www.suse.com/security/cve/CVE-2026-4427"
},
{
"category": "external",
"summary": "SUSE Bug 1259910 for CVE-2026-4427",
"url": "https://bugzilla.suse.com/1259910"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-fdpass-teleport-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tbot-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tctl-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-bash-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-tsh-zsh-completion-17.7.23-1.1.x86_64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.aarch64",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.ppc64le",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.s390x",
"openSUSE Tumbleweed:teleport-zsh-completion-17.7.23-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-04T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2026-4427"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…