SLES 15

SLES 15 — cryptsetup — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — cryptsetup — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:108-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-4122 CVE-2020-14382 Upstream summary: It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. […]

Read more
SLES 15 — sharutils — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — sharutils — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-1000097 Upstream summary: Sharutils sharutils (unshar command) version 4.15.2 contains a Buffer Overflow vulnerability in Affected component on the file unshar.c at line 75, function […]

Read more
SLES 15 — xmlgraphics-batik — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xmlgraphics-batik — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0777-1 Related CVEs: CVE-2022-44729 CVE-2020-11988 CVE-2022-41704 CVE-2022-42890 CVE-2022-44730 CVE-2019-17566 CVE-2020-11987 CVE-2022-38398  +2 more Upstream summary: Server-Side Request Forgery (SSRF) vulnerability in Apache Software Foundation Apache XML Graphics Batik.This issue affects Apache XML […]

Read more
SLES 15 — python2-rsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python2-rsa — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:254-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13757 CVE-2020-25658 Upstream summary: Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping […]

Read more
SLES 15 — bogofilter-db — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — bogofilter-db — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:014 (see also SUSE bugzilla) Related CVEs: CVE-2010-2494 CVE-2012-5468 Upstream summary: Multiple buffer underflows in the base64 decoder in base64.c in (1) bogofilter and (2) bogolexer in bogofilter before 1.2.2 allow remote […]

Read more
SLES 15 — raptor — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — raptor — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2895-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25713 CVE-2017-18926 CVE-2024-57822 CVE-2024-57823 CVE-2012-0037 Upstream summary: A malformed input file can lead to a segfault due to an out of bounds array access in […]

Read more
SLES 15 — python311-tornado6 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-tornado6 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:10590 (see also SUSE bugzilla) Related CVEs: CVE-2024-52804 Upstream summary: Tornado is a Python web framework and asynchronous networking library. The algorithm used for parsing HTTP cookies in Tornado versions prior to […]

Read more
SLES 15 — tracker-miners — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tracker-miners — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4868-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-5557 CVE-2026-1764 CVE-2026-1765 CVE-2026-1766 CVE-2026-1767 Upstream summary: A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to […]

Read more
SLES 15 — enigmail — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — enigmail — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2018:1329-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-17688 CVE-2017-17689 CVE-2018-12019 CVE-2014-5369 CVE-2019-12269 Upstream summary: The OpenPGP specification allows a Cipher Feedback Mode (CFB) malleability-gadget attack that can indirectly lead to plaintext exfiltration, […]

Read more
SLES 15 — buildah — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — buildah — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2741-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10696 CVE-2022-2990 CVE-2022-27651 Upstream summary: A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a […]

Read more
CHAT