SLES

SLES 15 — cni-plugins — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — cni-plugins — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:386-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10749 Upstream summary: A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in Kubernetes clusters to perform man-in-the-middle […]

Read more
SLES 15 — libswscale5_9 — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libswscale5_9 — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-33815 CVE-2019-11338 CVE-2019-11339 CVE-2019-15942 CVE-2018-7751 CVE-2020-35964 Upstream summary: dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked. […]

Read more
SLES 16 — cpp13 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — cpp13 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3021-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-4039 Upstream summary: **DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in […]

Read more
SLES 16 — python313-redis — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-redis — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1639-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-28858 CVE-2023-28859 Upstream summary: redis-py before 4.5.3 leaves a connection open after canceling an async Redis command at an inopportune time, and can send response […]

Read more
SLES 15 — apache-pdfbox — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — apache-pdfbox — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:3318-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-11797 CVE-2021-27807 CVE-2021-27906 CVE-2016-2175 CVE-2018-8036 Upstream summary: In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an […]

Read more
SLES 15 — dstat — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — dstat — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2009-3894 Upstream summary: Multiple untrusted search path vulnerabilities in dstat before 0.7.0 allow local users to gain privileges via a Trojan horse Python module in (1) the current working […]

Read more
SLES 12 — m4 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — m4 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1329-1 (see also SUSE bugzilla) Related CVEs: CVE-2009-4029 Upstream summary: The (1) dist or (2) distcheck rules in GNU Automake 1.11.1, 1.10.3, and release branches branch-1-4 through branch-1-9, when producing a distribution […]

Read more
SLES 16 — python313-tqdm — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-tqdm — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2016-10075 CVE-2024-34062 Upstream summary: The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with […]

Read more
SLES 15 — evolution — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — evolution — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1266-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-15587 Upstream summary: GNOME Evolution through 3.28.2 is prone to OpenPGP signatures being spoofed for arbitrary messages using a specially crafted email that contains a […]

Read more
SLES 12 — xfsprogs — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — xfsprogs — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:2383-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-2150 Upstream summary: xfs_metadump in xfsprogs before 3.2.4 does not properly obfuscate file data, which allows remote attackers to obtain sensitive information by reading a […]

Read more
CHAT