SLES 12

SLES 12 — openssh8.4 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — openssh8.4 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:23479 (see also SUSE bugzilla) Related CVEs: CVE-2025-61985 Upstream summary: ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is […]

Read more
SLES 12 — libgnome-autoar — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libgnome-autoar — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0664-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36241 Upstream summary: autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it […]

Read more
SLES 12 — taglib — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — taglib — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1374-2 (see also SUSE bugzilla) Related CVEs: CVE-2018-11439 CVE-2012-2396 Upstream summary: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted […]

Read more
SLES 12 — libmpfr4 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libmpfr4 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:9332 (see also SUSE bugzilla) Related CVEs: CVE-2014-9474 Upstream summary: Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to […]

Read more
SLES 12 — iscsiuio — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — iscsiuio — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:233-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13987 CVE-2020-13988 CVE-2020-17437 CVE-2020-17438 Upstream summary: An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read vulnerability exists in the uIP TCP/IP Stack component […]

Read more
SLES 12 — libadns1 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libadns1 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:193-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-9103 CVE-2017-9104 CVE-2017-9105 CVE-2017-9106 CVE-2017-9107 CVE-2017-9108 CVE-2017-9109 Upstream summary: An issue was discovered in adns before 1.5.2. pap_mailbox822 does not properly check st from adns__findlabel_next. […]

Read more
SLES 12 — libonig2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libonig2 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2022:1093-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-26159 Upstream summary: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Further investigation showed that it was not a security issue. Notes: none Table of […]

Read more
SLES 12 — libvirt — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libvirt — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:2969-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25637 CVE-2021-4147 CVE-2013-4296 CVE-2017-1000256 CVE-2019-10132 CVE-2019-10161 CVE-2019-10166 CVE-2019-10167  +12 more Upstream summary: A double free memory issue was found to occur in the libvirt API, […]

Read more
SLES 12 — ppp — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ppp — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0489-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8597 CVE-2022-4603 CVE-2014-3158 CVE-2015-3310 Upstream summary: eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions. […]

Read more
CHAT