SLES 12

SLES 12 — libjasper1 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libjasper1 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1396-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-31744 CVE-2020-27828 CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-8654 CVE-2016-9262 CVE-2016-9560  +12 more Upstream summary: In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability, […]

Read more
SLES 12 — dpdk — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — dpdk — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3341-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-2132 CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 CVE-2019-14818 CVE-2020-10722  +7 more Upstream summary: A permissive list of allowed inputs flaw was found in DPDK. This issue […]

Read more
SLES 12 — libMagickCore — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libMagickCore — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1596-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-33908 CVE-2026-28494 CVE-2026-28686 CVE-2026-28687 CVE-2026-28690 CVE-2026-28691 CVE-2026-28692 CVE-2026-28693  +12 more Upstream summary: ImageMagick is free and open-source software used for editing and manipulating digital images. […]

Read more
SLES 12 — ruby2.1-rubygem-rack — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ruby2.1-rubygem-rack — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0765-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-25126 CVE-2024-26141 CVE-2015-3225 CVE-2024-26146 Upstream summary: Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack's media type parser […]

Read more
SLES 12 — libcroco — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libcroco — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:741-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-12825 CVE-2017-7960 CVE-2017-7961 CVE-2017-8834 CVE-2017-8871 Upstream summary: libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption. Table of contents Symptom […]

Read more
SLES 12 — ft2demos — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ft2demos — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:721-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-7864 CVE-2025-27363 CVE-2017-8287 CVE-2020-15999 CVE-2025-23022 CVE-2009-0946 CVE-2010-2497 CVE-2010-2805  +12 more Upstream summary: FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a heap-based buffer […]

Read more
SLES 12 — npm6 — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — npm6 — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1568-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8174 CVE-2019-15604 CVE-2019-15605 CVE-2019-15606 CVE-2019-16775 CVE-2019-16776 CVE-2019-16777 CVE-2020-7598  +2 more Upstream summary: napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and […]

Read more
SLES 12 — php5 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — php5 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:1504-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-4542 CVE-2016-4543 CVE-2016-4544 CVE-2020-7060 CVE-2015-2787 CVE-2015-3329 CVE-2015-6831 CVE-2015-8879  +12 more Upstream summary: The exif_process_IFD_TAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and […]

Read more
SLES 12 — busybox — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — busybox — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0235-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-60876 CVE-2026-26157 CVE-2026-26158 CVE-2022-48174 CVE-2016-2147 CVE-2018-1000500 CVE-2018-1000517 CVE-2021-28831  +12 more Upstream summary: BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control […]

Read more
CHAT