SLES 12

SLES 12 — libzypp — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libzypp — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:276-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3200 CVE-2019-20387 Upstream summary: Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, […]

Read more
SLES 12 — python-Babel — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-Babel — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:599-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-42771 Upstream summary: Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to […]

Read more
SLES 12 — python-pip — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-pip — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:4334-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-5752 CVE-2026-1703 Upstream summary: When installing a package from a Mercurial VCS URL (ie "pip install hg+…") with pip prior to v23.3, the specified Mercurial […]

Read more
SLES 12 — yast2-multipath — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — yast2-multipath — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3231-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-17955 Upstream summary: In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection Table of […]

Read more
SLES 12 — libmicrohttpd10 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libmicrohttpd10 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:1686-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-27371 CVE-2013-7038 CVE-2013-7039 Upstream summary: GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the […]

Read more
SLES 12 — tar — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tar — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:1498-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-48303 CVE-2021-20193 CVE-2010-0624 CVE-2016-6321 CVE-2023-39804 CVE-2018-20482 CVE-2019-9923 Upstream summary: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory […]

Read more
SLES 12 — clone-master-clean-up — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — clone-master-clean-up — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3667-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-32000 Upstream summary: A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux […]

Read more
SLES 12 — libyajl2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libyajl2 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2276-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24795 Upstream summary: yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` […]

Read more
SLES 12 — evince — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — evince — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:14141-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-1010006 CVE-2017-1000159 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2017-1000083 CVE-2019-11459 Upstream summary: Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. […]

Read more
SLES 12 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:027 (see also SUSE bugzilla) Related CVEs: CVE-2008-3825 CVE-2009-1384 Upstream summary: pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and earlier, when the existing_ticket option is enabled, uses incorrect privileges when […]

Read more
CHAT