SLES 15

SLES 15 — perl-Spreadsheet-ParseExcel — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — perl-Spreadsheet-ParseExcel — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0158-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-7101 Upstream summary: Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability […]

Read more
SLES 15 — cracklib — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — cracklib — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:695-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-6318 Upstream summary: Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a denial of service (application crash) […]

Read more
SLES 15 — apache2-mod_jk — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — apache2-mod_jk — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:3963-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-11759 CVE-2023-41081 CVE-2024-46544 CVE-2008-5519 CVE-2014-8111 CVE-2018-1323 Upstream summary: The Apache Web Server (httpd) specific code that normalised the requested path before matching it to the […]

Read more
SLES 15 — podofo — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — podofo — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3541-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-8981 CVE-2017-6840 CVE-2017-6841 CVE-2017-6842 CVE-2017-6845 CVE-2017-6849 CVE-2017-8378 CVE-2018-5309  +6 more Upstream summary: Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers […]

Read more
SLES 15 — librav1e0_6 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — librav1e0_6 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:3015-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-45710 CVE-2018-25023 Upstream summary: An issue was discovered in the tokio crate before 1.8.4, and 1.9.x through 1.13.x before 1.13.1, for Rust. In certain circumstances […]

Read more
SLES 15 — grep — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — grep — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2015-1345 Upstream summary: The bmexec_trans function in kwset.c in grep 2.19 through 2.21 allows local users to cause a denial of service (out-of-bounds heap read […]

Read more
SLES 15 — ruby2.5-rubygem-rails-html-sanitizer — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — ruby2.5-rubygem-rails-html-sanitizer — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3534-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-23518 CVE-2022-23519 CVE-2022-23517 CVE-2022-23520 CVE-2022-32209 Upstream summary: rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Versions >= 1.0.3, < 1.4.4 are vulnerable to […]

Read more
SLES 15 — shadow — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — shadow — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2026:1228-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4235 CVE-2023-29383 CVE-2018-7169 CVE-2023-4641 Upstream summary: shadow: TOCTOU (time-of-check time-of-use) race condition when copying and removing directory trees Table of contents Symptom & Impact Environment […]

Read more
SLES 15 — guestfsd — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — guestfsd — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1626-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4419 CVE-2022-2211 CVE-2013-2124 Upstream summary: The guestfish command in libguestfs 1.20.12, 1.22.7, and earlier, when using the –remote or –listen option, does not properly check […]

Read more
SLES 15 — ipmitool — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — ipmitool — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0405-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-5208 Upstream summary: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, […]

Read more
CHAT