SLES 16

SLES 16 — kpartx — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — kpartx — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3707-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-41973 CVE-2022-41974 Upstream summary: multipath-tools 0.7.7 through 0.9.x before 0.9.2 allows local users to obtain root access, as exploited in conjunction with CVE-2022-41974. Local users […]

Read more
SLES 16 — krb5 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — krb5 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2008:016 (see also SUSE bugzilla) Related CVEs: CVE-2008-0062 CVE-2008-0948 CVE-2009-4212 CVE-2002-2443 CVE-2007-0957 CVE-2007-2443 CVE-2008-0063 CVE-2009-0846  +12 more Upstream summary: KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for […]

Read more
SLES 16 — docker-compose — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — docker-compose — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:20656-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-62725 CVE-2022-27664 CVE-2022-2879 CVE-2022-2880 CVE-2022-32149 CVE-2022-41723 CVE-2022-41715 Upstream summary: Docker Compose trusts the path information embedded in remote OCI compose artifacts. When a layer includes […]

Read more
SLES 16 — ffmpeg — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — ffmpeg — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:2919-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-22046 CVE-2022-3964 CVE-2023-50010 CVE-2023-51793 CVE-2023-51794 CVE-2024-31578 CVE-2024-7055 CVE-2025-7700  +12 more Upstream summary: A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory […]

Read more
SLES 16 — libconfuse2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libconfuse2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3331-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40320 CVE-2018-14447 Upstream summary: cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. Table of contents Symptom & Impact Environment & Reproduction Root […]

Read more
SLES 16 — openssl — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — openssl — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:1472 (see also SUSE bugzilla) Related CVEs: CVE-2025-15467 CVE-2006-3738 CVE-2026-28388 CVE-2026-31789 CVE-2025-11187 CVE-2025-15468 CVE-2006-2937 CVE-2007-4995  +12 more Upstream summary: Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters […]

Read more
SLES 16 — docker — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — docker — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2024:4391-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-41110 CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2015-3629 CVE-2015-3630 CVE-2019-14271  +12 more Upstream summary: Moby is an open-source project created by Docker for software containerization. A security […]

Read more
SLES 16 — python313-bleach — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-bleach — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-7753 CVE-2020-6817 CVE-2020-6802 CVE-2020-6816 CVE-2021-23980 Upstream summary: An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that have URI values weren't properly sanitized if […]

Read more
SLES 16 — xz — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — xz — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory BLOG-XZ (see also SUSE bugzilla) Related CVEs: CVE-2024-3094 CVE-2022-1271 CVE-2025-31115 Upstream summary: Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, […]

Read more
SLES 16 — libcap2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libcap2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:12423 (see also SUSE bugzilla) Related CVEs: CVE-2026-4878 CVE-2023-2603 CVE-2023-2602 Upstream summary: A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` […]

Read more
CHAT