SLES 12

SLES 12 — perl-XML-LibXML — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-XML-LibXML — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0123-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-10672 CVE-2015-3451 Upstream summary: Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to […]

Read more
SLES 12 — libxmltooling6 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libxmltooling6 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0140-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-0486 CVE-2023-36661 CVE-2018-0489 CVE-2019-9628 Upstream summary: Shibboleth XMLTooling-C before 1.6.3, as used in Shibboleth Service Provider before 2.6.0 on Windows and other products, mishandles digital […]

Read more
SLES 12 — python-imaging — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-imaging — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:0705-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-1932 Upstream summary: The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in EpsImagePlugin.py, (3) load function in IptcImagePlugin.py, and (4) _copy function in Image.py […]

Read more
SLES 12 — rubygem-chef — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — rubygem-chef — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1036-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-0262 CVE-2013-0263 CVE-2013-0269 CVE-2013-0276 CVE-2013-0277 Upstream summary: rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before 1.4.5 allows attackers to access arbitrary files outside […]

Read more
SLES 12 — systemtap — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — systemtap — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:010 (see also SUSE bugzilla) Related CVEs: CVE-2009-4273 CVE-2010-0412 CVE-2009-2911 CVE-2010-0411 Upstream summary: stap-server in SystemTap before 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in stap command-line arguments […]

Read more
SLES 12 — xlockmore — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — xlockmore — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-4143 Upstream summary: The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon […]

Read more
SLES 12 — libSDL — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libSDL — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0104-2 (see also SUSE bugzilla) Related CVEs: CVE-2020-14409 CVE-2020-14410 CVE-2021-33657 CVE-2019-13616 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575  +7 more Upstream summary: SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy […]

Read more
SLES 12 — libdb — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libdb — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:3135-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-2708 Upstream summary: Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 […]

Read more
SLES 12 — jq — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — jq — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10585 (see also SUSE bugzilla) Related CVEs: CVE-2025-48060 CVE-2024-23337 CVE-2025-9403 Upstream summary: jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function `jv_string_vfmt` […]

Read more
SLES 12 — aws-cli — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — aws-cli — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2018:4074-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-15869 Upstream summary: An Amazon Web Services (AWS) developer who does not specify the –owners flag when describing images via AWS CLI, and therefore not […]

Read more
CHAT