These are all security issues fixed in the squashfs-4.6.1-2.1 package on the GA media of openSUSE Tumbleweed.
{ "binaries": [ { "squashfs": "4.6.1-2.1" } ] }