SLES 15

SLES 15 — tgt — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tgt — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02591-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-45751 Upstream summary: tgt (aka Linux target framework) before 1.0.93 attempts to achieve entropy by calling rand without srand. The PRNG seed is always 1, […]

Read more
SLES 15 — sysconfig — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — sysconfig — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2012:0096-1 (see also SUSE bugzilla) Related CVEs: CVE-2011-4182 Upstream summary: Missing escaping of ESSID values in sysconfig of SUSE Linux Enterprise allows attackers controlling an access point to cause execute arbitrary code. […]

Read more
SLES 15 — apache2-mod_nss — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — apache2-mod_nss — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1926-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4566 CVE-2015-5244 CVE-2016-3099 Upstream summary: mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting […]

Read more
SLES 15 — libre2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libre2 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0573-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-32731 Upstream summary: When gRPC HTTP2 stack raised a header size exceeded error, it skipped parsing the rest of the HPACK frame. This caused any […]

Read more
SLES 15 — xf86-video-intel — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xf86-video-intel — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2014-4910 Upstream summary: Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface […]

Read more
SLES 15 — yast2-security — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — yast2-security — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-3700 Upstream summary: yast2-security didn't use secure defaults to protect passwords. This became a problem on 2019-10-07 when configuration files that set secure settings were […]

Read more
SLES 15 — xmlgraphics-fop — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xmlgraphics-fop — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:4054-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28168 Upstream summary: Improper Restriction of XML External Entity Reference ('XXE') vulnerability in Apache XML Graphics FOP. This issue affects Apache XML Graphics FOP: 2.9. […]

Read more
SLES 15 — ruby2.5-rubygem-actionmailer — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — ruby2.5-rubygem-actionmailer — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3878-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-47889 Upstream summary: Action Mailer is a framework for designing email service layers. Starting in version 3.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and […]

Read more
SLES 15 — gawk — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — gawk — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:2768-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-4156 Upstream summary: A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could […]

Read more
SLES 15 — fuse — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — fuse — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:005 (see also SUSE bugzilla) Related CVEs: CVE-2011-0541 CVE-2015-3202 CVE-2018-10906 CVE-2009-3297 Upstream summary: fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount […]

Read more
CHAT