Common Problems

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:3125-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-18277 CVE-2012-2391 CVE-2013-1912 CVE-2013-2175 CVE-2014-6269 CVE-2015-3281 Upstream summary: A flaw was found in HAProxy before 2.0.6. In legacy mode, messages featuring a transfer-encoding header missing […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:14246-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-14228 CVE-2017-17810 CVE-2017-10686 CVE-2017-17811 CVE-2017-17812 CVE-2017-17814 CVE-2017-17815 CVE-2017-17816  +6 more Upstream summary: In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2015:1730-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-0259 Upstream summary: OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:2086-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13867 Upstream summary: Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files). Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:005 (see also SUSE bugzilla) Related CVEs: CVE-2011-0461 Upstream summary: /etc/init.d/boot.localfs in the aaa_base package before 11.2-43.48.1 in SUSE openSUSE 11.2, and before 11.3-8.7.1 in openSUSE 11.3, allows local users to overwrite […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:014 (see also SUSE bugzilla) Related CVEs: CVE-2010-2494 CVE-2012-5468 Upstream summary: Multiple buffer underflows in the base64 decoder in base64.c in (1) bogofilter and (2) bogolexer in bogofilter before 1.2.2 allow remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2020-15888 CVE-2020-24342 CVE-2020-24369 CVE-2021-44647 CVE-2022-33099 CVE-2020-15945 CVE-2021-43519 Upstream summary: Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1276-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-26495 CVE-2022-26496 CVE-2005-3534 CVE-2015-0847 Upstream summary: In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2012:1673-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-2669 CVE-2012-5532 Upstream summary: The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0642-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10916 Upstream summary: It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a […]