Common Problems

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2016-6581 Upstream summary: A HTTP/2 implementation built using any version of the Python HPACK library between v1.0.0 and v2.2.0 could be targeted for a denial of service attack, specifically […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:537-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-25217 CVE-2018-5732 CVE-2019-6470 CVE-2022-2928 CVE-2022-2929 CVE-2009-1892 CVE-2010-2156 CVE-2010-3611  +12 more Upstream summary: In ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16, ISC DHCP 4.4.0 -> 4.4.2 (Other branches […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2008-5984 CVE-2019-19451 Upstream summary: Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2015:0611-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-0240 CVE-2022-2255 Upstream summary: The mod_wsgi module before 3.5 for Apache, when daemon mode is enabled, does not properly handle error codes returned by setuid […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:0270-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-6923 CVE-2010-4267 CVE-2011-2697 CVE-2013-4325 CVE-2013-6402 CVE-2013-6427 CVE-2015-0839 CVE-2004-0801  +1 more Upstream summary: The HP Linux Imaging and Printing (HPLIP) software may potentially be affected by […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:3135-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-2708 Upstream summary: Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2012-2240 CVE-2012-2241 CVE-2012-3500 Upstream summary: scripts/dscverify.pl in devscripts before 2.12.3 allows remote attackers to execute arbitrary commands via unspecified vectors related to "arguments to external commands." Table of contents […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4089-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-40660 CVE-2021-42781 CVE-2021-42782 CVE-2023-5992 CVE-2023-40661 CVE-2023-2977 CVE-2021-42779 CVE-2019-19481  +12 more Upstream summary: A flaw was found in OpenSC packages that allow a potential PIN bypass. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-4326 Upstream summary: RealtimeKit (aka rtkit) 0.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:173-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-2201 CVE-2020-17541 CVE-2020-35538 CVE-2020-13790 CVE-2014-9092 CVE-2017-15232 CVE-2018-1152 CVE-2018-11813  +1 more Upstream summary: In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due […]