SLES 12

SLES 12 — pam — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pam — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:10379 (see also SUSE bugzilla) Related CVEs: CVE-2024-10041 CVE-2024-22365 CVE-2010-3430 CVE-2010-3431 CVE-2010-3853 CVE-2011-3148 CVE-2014-2583 CVE-2015-3238  +1 more Upstream summary: A vulnerability was found in PAM. The secret information is stored in memory, […]

Read more
SLES 12 — libiniparser0 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libiniparser0 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0821-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-0633 CVE-2023-33461 Upstream summary: Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory Table of contents Symptom & […]

Read more
SLES 12 — hplip — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — hplip — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:0270-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-6923 CVE-2010-4267 CVE-2011-2697 CVE-2013-4325 CVE-2013-6402 CVE-2013-6427 CVE-2015-0839 CVE-2004-0801  +1 more Upstream summary: The HP Linux Imaging and Printing (HPLIP) software may potentially be affected by […]

Read more
SLES 12 — libapr1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libapr1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3428-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-49582 CVE-2011-0419 CVE-2017-12613 CVE-2011-1928 Upstream summary: Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to […]

Read more
SLES 12 — libjpeg8 — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libjpeg8 — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:173-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-2201 CVE-2020-17541 CVE-2020-35538 CVE-2020-13790 CVE-2014-9092 CVE-2017-15232 CVE-2018-1152 CVE-2018-11813  +1 more Upstream summary: In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due […]

Read more
SLES 12 — rubygem-passenger — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — rubygem-passenger — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:2337-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-7519 CVE-2017-1000384 CVE-2017-16355 CVE-2018-12029 Upstream summary: agent/Core/Controller/SendRequest.cpp in Phusion Passenger before 4.0.60 and 5.0.x before 5.0.22, when used in Apache integration mode or in standalone […]

Read more
SLES 12 — xfig — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — xfig — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1196-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45920 CVE-2009-1962 CVE-2009-4227 Upstream summary: Xfig v3.2.8 was discovered to contain a NULL pointer dereference when calling XGetWMHints(). NOTE: this is disputed because it is […]

Read more
SLES 12 — spamassassin — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — spamassassin — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0810-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-11805 CVE-2019-12420 CVE-2020-1930 CVE-2020-1931 CVE-2020-1946 CVE-2017-15705 CVE-2018-11780 CVE-2018-11781 Upstream summary: In Apache SpamAssassin before 3.4.3, nefarious CF files can be configured to run system commands […]

Read more
SLES 12 — cpp7 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cpp7 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3021-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-4039 CVE-2019-14250 CVE-2019-15847 CVE-2020-13844 Upstream summary: **DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing […]

Read more
SLES 12 — cfengine — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cfengine — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2126-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-44215 CVE-2021-44216 Upstream summary: Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact. Table […]

Read more
CHAT