SLES 12

SLES 12 — syslog-ng — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — syslog-ng — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0319-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-38725 CVE-2020-8019 CVE-2011-0343 CVE-2011-1951 Upstream summary: An integer overflow in the RFC3164 parser in One Identity syslog-ng 3.0 through 3.37 allows remote attackers to cause […]

Read more
SLES 12 — booth — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — booth — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:2040-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-3049 CVE-2022-2553 Upstream summary: A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow […]

Read more
SLES 12 — python-Jinja2 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-Jinja2 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:0308 (see also SUSE bugzilla) Related CVEs: CVE-2024-56326 CVE-2016-10745 CVE-2019-10906 CVE-2019-8341 CVE-2020-28493 CVE-2024-34064 CVE-2014-0012 Upstream summary: Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed […]

Read more
SLES 12 — docker-stable — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — docker-stable — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:3344 (see also SUSE bugzilla) Related CVEs: CVE-2025-30204 CVE-2018-20699 Upstream summary: golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2, the […]

Read more
SLES 12 — jakarta-commons-fileupload — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — jakarta-commons-fileupload — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:14177 (see also SUSE bugzilla) Related CVEs: CVE-2025-48976 CVE-2013-2186 CVE-2016-1000031 Upstream summary: Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects […]

Read more
SLES 12 — python-future — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-future — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03028-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-50817 Upstream summary: A vulnerability in the Python-Future 1.0.0 module allows for arbitrary code execution via the unintended import of a file named test.py. When […]

Read more
SLES 12 — mariadb — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — mariadb — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0111 (see also SUSE bugzilla) Related CVEs: CVE-2025-13699 CVE-2014-0224 CVE-2019-2529 CVE-2020-2574 CVE-2021-2180 CVE-2010-5298 CVE-2014-0195 CVE-2014-0198  +12 more Upstream summary: MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote […]

Read more
SLES 12 — gvfs — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — gvfs — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0916-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-28296 CVE-2026-28295 CVE-2019-12795 Upstream summary: A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying […]

Read more
SLES 12 — vim — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — vim — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1347-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-34714 CVE-2026-34982 CVE-2023-4750 CVE-2024-22667 CVE-2023-5535 CVE-2023-4733 CVE-2023-4738 CVE-2023-4752  +12 more Upstream summary: Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted […]

Read more
SLES 12 — tiff — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tiff — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:12265 (see also SUSE bugzilla) Related CVEs: CVE-2026-4775 CVE-2025-9900 CVE-2025-8176 CVE-2023-26965 CVE-2022-48281 CVE-2022-3970 CVE-2022-2519 CVE-2022-2521  +12 more Upstream summary: A flaw was found in the libtiff library. A remote attacker could exploit […]

Read more
CHAT