SLES 15

SLES 15 — ant — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — ant — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:712-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-11979 CVE-2021-42550 CVE-2021-36373 CVE-2021-36374 CVE-2013-1571 CVE-2018-10886 CVE-2020-1945 Upstream summary: As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissions of temporary files it created so […]

Read more
SLES 15 — libpcre2 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libpcre2 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1680-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1587 CVE-2022-41409 CVE-2019-20454 CVE-2017-8786 Upstream summary: An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This […]

Read more
SLES 15 — jsr — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — jsr — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1357-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-37714 Upstream summary: jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML […]

Read more
SLES 15 — libcapnp — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libcapnp — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:4478-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-46149 Upstream summary: Cap'n Proto is a data interchange format and remote procedure call (RPC) system. Cap'n Proro prior to versions 0.7.1, 0.8.1, 0.9.2, and […]

Read more
SLES 15 — minicom — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — minicom — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1092-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-7467 Upstream summary: A buffer overflow flaw was found in the way minicom before version 2.7.1 handled VT100 escape sequences. A malicious terminal device could […]

Read more
SLES 15 — nut — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — nut — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2012:1077-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-2944 Upstream summary: Buffer overflow in the addchar function in common/parseconf.c in upsd in Network UPS Tools (NUT) before 2.6.4 allows remote attackers to execute […]

Read more
SLES 15 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:027 (see also SUSE bugzilla) Related CVEs: CVE-2008-3825 CVE-2009-1384 Upstream summary: pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and earlier, when the existing_ticket option is enabled, uses incorrect privileges when […]

Read more
SLES 15 — nbd — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — nbd — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1276-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-26495 CVE-2022-26496 Upstream summary: In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer overflow. A value of 0xffffffff […]

Read more
SLES 15 — libcryptopp8_6_0 — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libcryptopp8_6_0 — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:4310-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-50979 CVE-2023-50981 CVE-2023-50980 CVE-2019-14318 CVE-2021-40530 Upstream summary: Crypto++ (aka cryptopp) through 8.9.0 has a Marvin side channel during decryption with PKCS#1 v1.5 padding. Table of […]

Read more
SLES 15 — perl-Tk — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — perl-Tk — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2006:052 (see also SUSE bugzilla) Related CVEs: CVE-2006-4484 Upstream summary: Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an […]

Read more
CHAT