SLES 15

SLES 15 — libnbd — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libnbd — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6757 (see also SUSE bugzilla) Related CVEs: CVE-2024-7383 CVE-2022-0485 CVE-2023-5215 CVE-2023-5871 CVE-2021-20286 Upstream summary: A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when […]

Read more
SLES 15 — python311-marshmallow — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-marshmallow — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0226-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-68480 Upstream summary: Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 […]

Read more
SLES 15 — libcapstone4 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libcapstone4 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:4898 (see also SUSE bugzilla) Related CVEs: CVE-2025-67873 CVE-2025-68114 Upstream summary: Capstone is a disassembly framework. In versions 6.0.0-Alpha5 and prior, Skipdata length is not bounds-checked, so a user-provided skipdata callback can […]

Read more
SLES 15 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — dbus — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:263-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-35512 CVE-2012-3524 CVE-2023-34969 CVE-2022-42011 CVE-2022-42012 CVE-2020-12049 CVE-2010-1172 CVE-2013-0292  +12 more Upstream summary: A use-after-free flaw was found in D-Bus Development branch <= 1.13.16, dbus-1.12.x stable […]

Read more
SLES 15 — dovecot23 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — dovecot23 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0414-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-3814 CVE-2017-14461 CVE-2019-11500 CVE-2020-10957 CVE-2020-12100 CVE-2020-12673 CVE-2020-12674 CVE-2020-24386  +12 more Upstream summary: It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client […]

Read more
SLES 15 — booth — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — booth — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:2040-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-3049 CVE-2022-2553 Upstream summary: A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow […]

Read more
SLES 15 — python3-PyMySQL — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-PyMySQL — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:9193 (see also SUSE bugzilla) Related CVEs: CVE-2024-36039 Upstream summary: PyMySQL through 1.1.0 allows SQL injection if used with untrusted JSON input because keys are not escaped by escape_dict. Table of contents […]

Read more
SLES 15 — libgmp10 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libgmp10 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:541-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-43618 Upstream summary: GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to […]

Read more
SLES 15 — libnettle6 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libnettle6 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:254-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3580 CVE-2021-20305 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-6489 CVE-2018-16869 Upstream summary: A flaw was found in the way nettle's RSA decryption functions handled specially crafted ciphertext. An […]

Read more
SLES 15 — python3-cupshelpers — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-cupshelpers — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2011-4405 Upstream summary: The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure […]

Read more
CHAT