SLES 16

SLES 16 — groff — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — groff — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 Upstream summary: contrib/pdfmark/pdfroff.sh in GNU troff (aka groff) before 1.21 allows local users to overwrite arbitrary files via a symlink attack on […]

Read more
SLES 16 — ved — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — ved — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1128-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-1000156 Upstream summary: GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITOR_PROGRAM invocation (using ed) can result in […]

Read more
SLES 16 — jsoup — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — jsoup — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:3027-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-36033 Upstream summary: jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML […]

Read more
SLES 16 — libXRes1 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libXRes1 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1103-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1988 Upstream summary: Multiple integer overflows in X.org libXRes 1.0.6 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow […]

Read more
SLES 16 — libimobiledevice — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libimobiledevice — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-2142 Upstream summary: userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack […]

Read more
SLES 16 — python313-configobj — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-configobj — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2023:602-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-26112 Upstream summary: All versions of the package configobj are vulnerable to Regular Expression Denial of Service (ReDoS) via the validate function, using (.+?)\((.*)\). **Note:** […]

Read more
SLES 16 — libdw1 — multiple vulnerabilities (11 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libdw1 — multiple vulnerabilities (11 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-0172 CVE-2014-9447 CVE-2019-7148 CVE-2019-7149 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2019-7146  +3 more Upstream summary: Integer overflow in the check_section function in dwarf_begin_elf.c in the libdw library, as […]

Read more
SLES 16 — sqlite3 — multiple vulnerabilities (19 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — sqlite3 — multiple vulnerabilities (19 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:263-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-13435 CVE-2020-13871 CVE-2022-46908 CVE-2025-6965 CVE-2025-70873 CVE-2025-7709 CVE-2019-16168 CVE-2020-13434  +11 more Upstream summary: SQLite through 3.32.0 has a segmentation fault in sqlite3ExprCodeTarget in expr.c. Table of […]

Read more
SLES 16 — libqb100 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libqb100 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1791-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-12779 CVE-2023-39976 Upstream summary: libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm […]

Read more
SLES 16 — ucode-intel — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — ucode-intel — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:14758-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-24489 CVE-2021-0146 CVE-2022-21216 CVE-2022-33196 CVE-2022-41804 CVE-2023-23583 CVE-2023-23908 CVE-2023-42667  +12 more Upstream summary: Incomplete cleanup in some Intel(R) VT-d products may allow an authenticated user to […]

Read more
CHAT