SLES 15

SLES 15 — libQt5Svg5 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libQt5Svg5 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2967-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-45930 CVE-2023-32573 CVE-2021-3481 CVE-2018-19869 Upstream summary: Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps<QPainterPath::Element>::growAppend (called from […]

Read more
SLES 15 — umoci — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — umoci — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:1116-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-29136 CVE-2021-41190 Upstream summary: Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal […]

Read more
SLES 15 — google-gson — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — google-gson — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2044-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-25647 Upstream summary: The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead […]

Read more
SLES 15 — xstream — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xstream — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:4037-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-47072 CVE-2022-41966 CVE-2016-3674 CVE-2017-7957 CVE-2021-21342 CVE-2021-21344 CVE-2021-21345 CVE-2021-21346  +12 more Upstream summary: XStream is a simple library to serialize objects to XML and back again. […]

Read more
SLES 15 — libvorbis0 — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libvorbis0 — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:012 (see also SUSE bugzilla) Related CVEs: CVE-2008-1420 CVE-2009-3379 CVE-2012-0444 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633 CVE-2018-10392 CVE-2018-10393  +1 more Upstream summary: Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 […]

Read more
SLES 15 — libwps — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libwps — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:2485-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10583 CVE-2018-16858 Upstream summary: An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded […]

Read more
SLES 15 — go1.16 — multiple vulnerabilities (11 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — go1.16 — multiple vulnerabilities (11 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1007-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24921 CVE-2022-23772 CVE-2022-23806 CVE-2021-39293 CVE-2021-41771 CVE-2021-41772 CVE-2021-44716 CVE-2022-23773  +3 more Upstream summary: regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via […]

Read more
SLES 15 — conmon — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — conmon — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3473-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1708 CVE-2021-3602 CVE-2021-20291 CVE-2021-4024 CVE-2020-15157 CVE-2020-14370 CVE-2020-1726 CVE-2021-20199 Upstream summary: A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the […]

Read more
SLES 15 — clone-master-clean-up — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — clone-master-clean-up — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3667-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-32000 Upstream summary: A UNIX Symbolic Link (Symlink) Following vulnerability in the clone-master-clean-up.sh script of clone-master-clean-up in SUSE Linux Enterprise Server 12 SP3, SUSE Linux […]

Read more
CHAT