SLES 16

SLES 16 — python313-bottle — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-bottle — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3103-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-31799 CVE-2016-9964 CVE-2020-28473 Upstream summary: Bottle before 0.12.20 mishandles errors during early request binding. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
SLES 16 — libgtk — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libgtk — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6963 (see also SUSE bugzilla) Related CVEs: CVE-2024-6655 Upstream summary: A flaw was found in the GTK library. Under certain conditions, it is possible for a library to be injected into a […]

Read more
SLES 16 — librepo0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — librepo0 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2020:1289-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-14352 Upstream summary: A flaw was found in librepo in versions before 1.12.1. A directory traversal vulnerability was found where it failed to sanitize paths […]

Read more
SLES 16 — libxmltooling11 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libxmltooling11 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0140-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-0486 CVE-2018-0489 CVE-2019-9628 Upstream summary: Shibboleth XMLTooling-C before 1.6.3, as used in Shibboleth Service Provider before 2.6.0 on Windows and other products, mishandles digital signatures […]

Read more
SLES 16 — mpg123 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — mpg123 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-10683 CVE-2017-11126 Upstream summary: In mpg123 1.25.0, there is a heap-based buffer over-read in the convert_latin1 function in libmpg123/id3.c. A crafted input will lead to […]

Read more
SLES 16 — php8-pear — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — php8-pear — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3198-1 Related CVEs: CVE-2021-32610 Upstream summary: In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. Table of contents Symptom & Impact Environment […]

Read more
SLES 16 — python313-Jinja2 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-Jinja2 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:209-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-10745 CVE-2019-10906 CVE-2019-8341 CVE-2020-28493 CVE-2014-0012 CVE-2024-22195 CVE-2024-34064 Upstream summary: In Pallets Jinja before 2.8.1, str.format allows a sandbox escape. Table of contents Symptom & Impact […]

Read more
SLES 16 — python313-SQLAlchemy — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-SQLAlchemy — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:2211-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-7164 CVE-2019-7548 Upstream summary: SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter. Table of contents Symptom & Impact Environment […]

Read more
SLES 16 — python313-python-jose — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-python-jose — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2024:0118-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-33663 CVE-2024-33664 Upstream summary: python-jose through 3.3.0 has algorithm confusion with OpenSSH ECDSA keys and other key formats. This is similar to CVE-2022-29217. Table of […]

Read more
SLES 16 — python313-urllib3 — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-urllib3 — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:875-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-33503 CVE-2025-66418 CVE-2025-66471 CVE-2026-21441 CVE-2018-20060 CVE-2019-9740 CVE-2020-26137 CVE-2023-43804  +7 more Upstream summary: An issue was discovered in urllib3 before 1.26.5. When provided with a URL […]

Read more
CHAT