SLES 12

SLES 12 — libnettle4 — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libnettle4 — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:127-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20305 CVE-2021-3580 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-6489 Upstream summary: A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST […]

Read more
SLES 12 — gnome-shell — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — gnome-shell — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:9114 (see also SUSE bugzilla) Related CVEs: CVE-2024-36472 CVE-2010-4000 CVE-2017-8288 CVE-2019-3820 Upstream summary: In GNOME Shell through 45.7, a portal helper can be launched automatically (without user confirmation) based on network responses […]

Read more
SLES 12 — spice-vdagent — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — spice-vdagent — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3268-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25653 CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2017-15108 Upstream summary: A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw […]

Read more
SLES 12 — evolution — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — evolution — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3375-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-11879 CVE-2018-15587 Upstream summary: An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary (non-RFC6068) "mailto?attach=…" parameter, a website (or other source […]

Read more
SLES 12 — dmidecode — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — dmidecode — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:1494-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-30630 Upstream summary: Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via Sudo […]

Read more
SLES 12 — python-rsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-rsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:496-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25658 CVE-2016-1494 Upstream summary: It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker can use this flaw via the RSA decryption […]

Read more
SLES 12 — apache2-mod_wsgi — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — apache2-mod_wsgi — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:3372-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-2255 Upstream summary: A vulnerability was found in mod_wsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker […]

Read more
SLES 12 — dcraw — multiple vulnerabilities (11 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — dcraw — multiple vulnerabilities (11 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1277-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3624 CVE-2018-19566 CVE-2018-19568 CVE-2017-13735 CVE-2017-14608 CVE-2018-19655 CVE-2018-5805 CVE-2018-5806  +3 more Upstream summary: There is an integer overflow vulnerability in dcraw. When the victim runs dcraw […]

Read more
SLES 12 — libass5 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libass5 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:3107-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-7970 CVE-2016-7971 CVE-2016-7969 CVE-2016-7972 Upstream summary: Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial […]

Read more
SLES 12 — python-ecdsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-ecdsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:744-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-14853 CVE-2019-14859 Upstream summary: An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature decoding, malformed DER signatures could raise unexpected exceptions (or […]

Read more
CHAT