SLES 16

SLES 16 — gnutls — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — gnutls — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2008:046 (see also SUSE bugzilla) Related CVEs: CVE-2008-1949 CVE-2008-1948 CVE-2014-0092 CVE-2016-8610 CVE-2020-13777 CVE-2021-20231 CVE-2021-20232 CVE-2022-2509  +12 more Upstream summary: The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 […]

Read more
SLES 16 — coreutils — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — coreutils — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1637-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-4041 CVE-2015-4042 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2025-5278 CVE-2024-0684 Upstream summary: The keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 on 64-bit platforms performs […]

Read more
SLES 16 — liblasso3 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — liblasso3 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:21452 (see also SUSE bugzilla) Related CVEs: CVE-2025-47151 CVE-2025-46404 CVE-2025-46705 CVE-2021-28091 Upstream summary: A type confusion vulnerability exists in the lasso_node_impl_init_from_xml functionality of Entr'ouvert Lasso 2.5.1 and 2.8.2. A specially crafted SAML […]

Read more
SLES 16 — libcairo2 — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libcairo2 — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2006:007 (see also SUSE bugzilla) Related CVEs: CVE-2006-0528 CVE-2016-9082 CVE-2017-7475 CVE-2017-9814 CVE-2025-50422 Upstream summary: The cairo library (libcairo), as used in GNOME Evolution and possibly other products, allows remote attackers to cause […]

Read more
SLES 16 — libQt6Gui6 — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libQt6Gui6 — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0841-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-25255 CVE-2023-24607 CVE-2023-32763 CVE-2024-39936 CVE-2023-32762 CVE-2023-33285 CVE-2023-34410 CVE-2023-37369  +6 more Upstream summary: In Qt 5.9.x through 5.15.x before 5.15.9 and 6.x before 6.2.4 on Linux […]

Read more
SLES 16 — iputils — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — iputils — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2010-2529 CVE-2025-47268 CVE-2025-48964 Upstream summary: Unspecified vulnerability in ping.c in iputils 20020927, 20070202, 20071127, and 20100214 on Mandriva Linux allows remote attackers to cause a […]

Read more
SLES 16 — google-guest-agent — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — google-guest-agent — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1007-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-23806 CVE-2021-38297 Upstream summary: Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value […]

Read more
SLES 16 — freeradius-server — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — freeradius-server — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1039-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-11235 CVE-2019-17185 CVE-2022-41860 CVE-2022-41861 CVE-2008-4474 CVE-2012-3547 CVE-2014-2015 CVE-2015-4680  +12 more Upstream summary: FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the received scalar is […]

Read more
SLES 16 — dom4j — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — dom4j — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1382-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10683 CVE-2018-1000632 Upstream summary: dom4j before 2.0.3 and 2.1.x before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, […]

Read more
SLES 16 — chrony — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — chrony — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2014-0021 CVE-2012-4502 CVE-2012-4503 CVE-2020-14367 CVE-2016-1567 Upstream summary: Chrony before 1.29.1 has traffic amplification in cmdmon protocol Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick […]

Read more
CHAT