SLES 12

SLES 12 — pcsc-lite — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pcsc-lite — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:015 (see also SUSE bugzilla) Related CVEs: CVE-2010-0407 CVE-2010-4531 CVE-2016-10109 Upstream summary: Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite […]

Read more
SLES 12 — librsvg — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — librsvg — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1288-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-1000041 CVE-2019-20446 CVE-2011-3146 CVE-2013-1881 CVE-2017-11464 Upstream summary: GNOME librsvg version before commit c6ddf2ed4d768fd88adbea2b63f575cd523022ea contains a Improper input validation vulnerability in rsvg-io.c that can result in […]

Read more
SLES 12 — patch — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — patch — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1019-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-1396 CVE-2019-13636 CVE-2010-4651 CVE-2015-1196 CVE-2016-10713 CVE-2018-1000156 CVE-2019-20633 CVE-2018-6952  +2 more Upstream summary: A Directory Traversal vulnerability exists in the GNU patch before 2.7.4. A remote […]

Read more
SLES 12 — rpcbind — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — rpcbind — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1306-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-8779 CVE-2015-7236 Upstream summary: rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data […]

Read more
SLES 12 — tpm2.0-tools — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tpm2.0-tools — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-7524 Upstream summary: tpm2-tools versions before 1.1.1 are vulnerable to a password leak due to transmitting password in plaintext from client to server when generating […]

Read more
SLES 12 — tack — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tack — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5913 (see also SUSE bugzilla) Related CVEs: CVE-2025-69720 CVE-2023-50495 CVE-2023-29491 CVE-2022-29458 CVE-2019-17594 CVE-2019-17595 CVE-2021-39537 CVE-2017-10684  +12 more Upstream summary: The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow […]

Read more
SLES 12 — libsodium23 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libsodium23 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0368-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-69277 CVE-2025-15444 Upstream summary: libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an […]

Read more
SLES 12 — openssh8.4 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — openssh8.4 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:23479 (see also SUSE bugzilla) Related CVEs: CVE-2025-61985 Upstream summary: ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is […]

Read more
SLES 12 — libgnome-autoar — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libgnome-autoar — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0664-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36241 Upstream summary: autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it […]

Read more
SLES 12 — taglib — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — taglib — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1374-2 (see also SUSE bugzilla) Related CVEs: CVE-2018-11439 CVE-2012-2396 Upstream summary: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted […]

Read more
CHAT