SLES 15 — xdg-utils — vulnerability — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read • Source: SUSE advisory SUSE-SU-2018:1497-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-18266 Upstream summary: The open_envvar function in xdg-open in xdg-utils before 1.1.3 does not validate strings before launching the program specified by the BROWSER environment […]