SLES 12

SLES 12 — xterm — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — xterm — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:7427 (see also SUSE bugzilla) Related CVEs: CVE-2022-45063 CVE-2021-27135 CVE-2022-24130 Upstream summary: xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore […]

Read more
SLES 12 — docker — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — docker — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2024:4391-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41110 CVE-2025-22869 CVE-2025-22868 CVE-2023-47108 CVE-2023-45142 CVE-2018-16873 CVE-2019-14271 CVE-2019-19921  +12 more Upstream summary: Moby is an open-source project created by Docker for software containerization. A security […]

Read more
SLES 12 — apache2 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — apache2 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:2918-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-33193 CVE-2021-44790 CVE-2010-0425 CVE-2025-49812 CVE-2025-23048 CVE-2025-49630 CVE-2023-45802 CVE-2024-40725  +12 more Upstream summary: A crafted method sent through HTTP/2 will bypass validation and be forwarded by […]

Read more
SLES 12 — log4j — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — log4j — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0053-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-17571 CVE-2022-23305 CVE-2022-23307 CVE-2021-4104 CVE-2022-23302 Upstream summary: Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can […]

Read more
SLES 12 — cups — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cups — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:023 (see also SUSE bugzilla) Related CVEs: CVE-2010-2941 CVE-2012-6094 CVE-2026-34990 CVE-2025-58060 CVE-2024-35235 CVE-2023-4504 CVE-2023-34241 CVE-2020-3898  +12 more Upstream summary: ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory […]

Read more
SLES 12 — flatpak — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — flatpak — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1511-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-34078 CVE-2024-42472 CVE-2024-32462 CVE-2023-28100 CVE-2017-5226 CVE-2019-10063 CVE-2026-34079 CVE-2023-28101  +1 more Upstream summary: Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the […]

Read more
SLES 12 — udev — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — udev — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0990-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-4105 CVE-2023-26604 CVE-2020-1712 CVE-2017-18078 CVE-2018-15688 CVE-2018-16864 CVE-2018-16865 CVE-2018-6954  +12 more Upstream summary: A flaw was found in systemd. The systemd-machined service contains an Improper Access […]

Read more
SLES 12 — npm18 — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — npm18 — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:3919-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-7783 CVE-2024-21892 CVE-2025-22150 CVE-2025-23085 CVE-2024-21538 CVE-2024-22020 CVE-2024-36138 CVE-2024-27980 Upstream summary: Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability […]

Read more
SLES 12 — sudo — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — sudo — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10110 (see also SUSE bugzilla) Related CVEs: CVE-2025-32462 CVE-2023-42465 CVE-2023-22809 CVE-2022-43995 CVE-2019-18634 CVE-2021-23240 CVE-2021-3156 CVE-2012-2337  +12 more Upstream summary: Sudo before 1.9.17p1, when used with a sudoers file that specifies a host […]

Read more
SLES 12 — libconfuse0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libconfuse0 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3331-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40320 Upstream summary: cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
CHAT