SLES 15

SLES 15 — libz1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libz1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1863-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-37434 CVE-2018-25032 CVE-2026-27171 CVE-2023-45853 Upstream summary: zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip […]

Read more
SLES 15 — slf4j — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — slf4j — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1744-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-8088 Upstream summary: org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended access restrictions via crafted data. EventData […]

Read more
SLES 15 — python2-M2Crypto — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python2-M2Crypto — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2024:1448-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25657 Upstream summary: A flaw was found in all released versions of m2crypto, where they are vulnerable to Bleichenbacher timing attacks in the RSA decryption […]

Read more
SLES 15 — unzip — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — unzip — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:0026-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-9636 CVE-2018-1000035 CVE-2022-0529 CVE-2022-0530 CVE-2014-9913  +4 more Upstream summary: Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier […]

Read more
SLES 15 — python3-python-gnupg — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-python-gnupg — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:0143-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-6690 Upstream summary: python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the attack, the passphrase to gnupg […]

Read more
SLES 15 — libyang2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libyang2 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2023-26916 Upstream summary: libyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lys_parse_mem at lys_parse_mem.c. Table of contents […]

Read more
SLES 15 — jackson-core — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — jackson-core — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1678-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-28491 CVE-2020-36518 CVE-2020-25649 Upstream summary: This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer […]

Read more
SLES 15 — tack — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tack — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5913 (see also SUSE bugzilla) Related CVEs: CVE-2025-69720 CVE-2023-50495 CVE-2023-29491 CVE-2022-29458 CVE-2021-39537 CVE-2018-19211 CVE-2019-17594 CVE-2019-17595  +1 more Upstream summary: The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow […]

Read more
SLES 15 — python311-GitPython — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-GitPython — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14858-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24439 CVE-2023-40590 CVE-2023-40267 CVE-2023-41040 Upstream summary: All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which […]

Read more
CHAT