SLES 12

SLES 12 — aspell — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — aspell — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:14783-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-25051 CVE-2019-17544 Upstream summary: objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list). Table of contents Symptom […]

Read more
SLES 12 — cloud-init — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cloud-init — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:6-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8631 CVE-2020-8632 CVE-2021-3429 CVE-2023-1786 CVE-2019-0816 Upstream summary: cloud-init through 19.4 relies on Mersenne Twister for a random password, which makes it easier for attackers to […]

Read more
SLES 12 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:263-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-35512 CVE-2012-3524 CVE-2023-34969 CVE-2022-42011 CVE-2022-42012 CVE-2019-12749 CVE-2020-12049 CVE-2010-1172  +12 more Upstream summary: A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable […]

Read more
SLES 12 — icu — multiple vulnerabilities (11 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — icu — multiple vulnerabilities (11 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:773-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10531 CVE-2020-21913 CVE-2014-8146 CVE-2014-8147 CVE-2014-9654 CVE-2016-6293 CVE-2017-14952 CVE-2017-15422  +3 more Upstream summary: An issue was discovered in International Components for Unicode (ICU) for C/C++ through […]

Read more
SLES 12 — rrdtool — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — rrdtool — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0103-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-2131 Upstream summary: Format string vulnerability in the rrdtool module 1.4.7 for Python, as used in Zenoss, allows context-dependent attackers to cause a denial of […]

Read more
SLES 12 — libesmtp — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libesmtp — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:658-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19977 Upstream summary: libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read. Table […]

Read more
SLES 12 — librbd1 — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — librbd1 — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1158-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-12059 CVE-2018-10861 CVE-2018-1128 CVE-2018-1129 CVE-2018-7262 CVE-2016-5009 CVE-2020-10753 CVE-2020-1760  +4 more Upstream summary: An issue was discovered in Ceph through 13.2.9. A POST request with an […]

Read more
SLES 12 — perl-DBI — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-DBI — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:14510-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-7490 CVE-2019-20919 CVE-2020-14392 CVE-2020-14393 CVE-2014-10401 CVE-2014-10402 Upstream summary: An issue was discovered in the DBI module before 1.632 for Perl. Using many arguments to methods […]

Read more
SLES 12 — glade — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — glade — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0983-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36774 Upstream summary: plugins/gtk+/glade-gtk-box.c in GNOME Glade before 3.38.1 and 3.39.x before 3.40.0 mishandles widget rebuilding for GladeGtkBox, leading to a denial of service (application […]

Read more
SLES 12 — tk — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tk — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2022:0484-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-35331 Upstream summary: In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crafted file. NOTE: multiple third parties dispute […]

Read more
CHAT