SLES 15

SLES 15 — exfatprogs — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — exfatprogs — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4449-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-45897 Upstream summary: exfatprogs before 1.2.2 allows out-of-bounds memory access, such as in read_file_dentry_set. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
SLES 15 — mdadm — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — mdadm — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3691-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-28736 CVE-2023-28938 Upstream summary: Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of […]

Read more
SLES 15 — tmux — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tmux — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2024:0184-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-47016 Upstream summary: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was […]

Read more
SLES 15 — screen — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — screen — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0491-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-26937 CVE-2025-46802 CVE-2017-5618 Upstream summary: encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application […]

Read more
SLES 15 — libplist — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libplist — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1368-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-5209 CVE-2017-5834 CVE-2017-6435 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2017-6440 CVE-2017-7982  +4 more Upstream summary: The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to […]

Read more
SLES 15 — libsaml9 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libsaml9 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:3234-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-16853 Upstream summary: The DynamicMetadataProvider class in saml/saml2/metadata/impl/DynamicMetadataProvider.cpp in OpenSAML-C in OpenSAML before 2.6.1 fails to properly configure itself with the MetadataFilter plugins and does […]

Read more
SLES 15 — wget — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — wget — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:2871-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-13089 CVE-2017-13090 CVE-2019-5953 CVE-2021-31879 CVE-2024-10524 CVE-2024-38428 CVE-2010-2252 CVE-2014-4877  +5 more Upstream summary: The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. […]

Read more
SLES 15 — tuned — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tuned — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:10384 (see also SUSE bugzilla) Related CVEs: CVE-2024-52336 CVE-2024-52337 Upstream summary: A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users […]

Read more
SLES 15 — libheif1 — multiple vulnerabilities (10 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libheif1 — multiple vulnerabilities (10 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3960-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41311 CVE-2023-0996 CVE-2025-68431 CVE-2023-49460 CVE-2023-49462 CVE-2023-49463 CVE-2023-49464 CVE-2020-23109  +2 more Upstream summary: In Libheif 1.17.6, insufficient checks in ImageOverlay::parse() decoding a heif file containing an […]

Read more
SLES 15 — libwebp7 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libwebp7 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2016-9085 CVE-2016-8888 Upstream summary: Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
CHAT