SLES 12

SLES 12 — ruby2.1-rubygem-yard — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ruby2.1-rubygem-yard — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1890-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-17042 Upstream summary: lib/yard/core_ext/file.rb in the server in YARD before 0.9.11 does not block relative paths with an initial ../ sequence, which allows attackers to […]

Read more
SLES 12 — xf86-video-intel — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — xf86-video-intel — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2014-4910 Upstream summary: Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface […]

Read more
SLES 12 — openCryptoki — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — openCryptoki — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:4717 (see also SUSE bugzilla) Related CVEs: CVE-2026-23893 CVE-2024-0914 Upstream summary: openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. Versions 2.3.2 and above are vulnerable to symlink-following when […]

Read more
SLES 12 — fetchmail — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — fetchmail — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:3845-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-61962 CVE-2021-36386 CVE-2021-39272 CVE-2009-2666 CVE-2010-1167 CVE-2011-1947 CVE-2012-3482 Upstream summary: In fetchmail before 6.5.6, the SMTP client can crash when authenticating upon receiving a 334 status […]

Read more
SLES 12 — hunspell — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — hunspell — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:2966-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-16707 Upstream summary: Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommonsubstring in suggestmgr.cxx. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
SLES 12 — osasnmpd — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — osasnmpd — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0776-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-25316 Upstream summary: A Insecure Temporary File vulnerability in s390-tools of SUSE Linux Enterprise Server 12-SP5, SUSE Linux Enterprise Server 15-SP2 allows local attackers to […]

Read more
SLES 12 — fontconfig — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — fontconfig — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:2186-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-5384 Upstream summary: fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequently conduct double free attacks […]

Read more
SLES 12 — libimobiledevice6 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libimobiledevice6 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-2142 Upstream summary: userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack […]

Read more
SLES 12 — ipmitool — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ipmitool — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0405-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-5208 Upstream summary: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, […]

Read more
SLES 12 — libZXing1 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libZXing1 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0157-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-28021 CVE-2021-42716 CVE-2021-42715 Upstream summary: Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file. Table of contents Symptom […]

Read more
CHAT