SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:10384 (see also SUSE bugzilla) Related CVEs: CVE-2024-52336 CVE-2024-52337 Upstream summary: A script injection vulnerability was identified in the Tuned package. The `instance_create()` D-Bus function can be called by locally logged-in users […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1021-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1304 CVE-2015-0247 CVE-2015-1572 CVE-2019-5094 CVE-2019-5188 Upstream summary: An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:0774-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-0210 CVE-2014-0211 CVE-2011-2895 CVE-2013-6462 CVE-2014-0209 CVE-2015-1802 CVE-2015-1803 CVE-2015-1804  +2 more Upstream summary: Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2022:632-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24903 CVE-2014-3634 CVE-2019-17041 CVE-2019-17042 CVE-2011-3200 CVE-2013-4758 CVE-2013-6370 CVE-2013-6371  +2 more Upstream summary: Rsyslog is a rocket-fast system for log processing. Modules for TCP syslog reception […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0123-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-10672 CVE-2015-3451 Upstream summary: Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-25058 Upstream summary: An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0076-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40899 Upstream summary: An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers to cause a denial of service via crafted Set-Cookie […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:4393-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-11407 CVE-2024-7246 Upstream summary: There exists a denial of service through Data corruption in gRPC-C++ – gRPC-C++ servers with transmit zero copy enabled through the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2012-3458 Upstream summary: Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:2425-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-18594 CVE-2018-15173 Upstream summary: nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection […]