These are all security issues fixed in the syncthing-1.23.5-1.1 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "syncthing": "1.23.5-1.1", "syncthing-relaysrv": "1.23.5-1.1" } ] }