SLES

SLES 12 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pam_krb5 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:027 (see also SUSE bugzilla) Related CVEs: CVE-2008-3825 CVE-2009-1384 Upstream summary: pam_krb5 2.2.14 in Red Hat Enterprise Linux (RHEL) 5 and earlier, when the existing_ticket option is enabled, uses incorrect privileges when […]

Read more
SLES 15 — suse-hpc — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — suse-hpc — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1903-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-17234 CVE-2018-17237 CVE-2020-10809 CVE-2018-17233 CVE-2018-17432 CVE-2018-17433 CVE-2018-17436 CVE-2020-10810  +12 more Upstream summary: Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through […]

Read more
SLES 12 — ksh — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ksh — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:2756-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-14868 Upstream summary: In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw […]

Read more
SLES 15 — jackson-core — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — jackson-core — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1678-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-28491 CVE-2020-36518 CVE-2020-25649 Upstream summary: This affects the package com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 0 and before 2.11.4, from 2.12.0-rc1 and before 2.12.1. Unchecked allocation of byte buffer […]

Read more
SLES 15 — libvorbis0 — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libvorbis0 — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2008:012 (see also SUSE bugzilla) Related CVEs: CVE-2008-1420 CVE-2009-3379 CVE-2012-0444 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633 CVE-2018-10392 CVE-2018-10393  +1 more Upstream summary: Integer overflow in residue partition value (aka partvals) evaluation in Xiph.org libvorbis 1.2.0 […]

Read more
SLES 15 — tack — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tack — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5913 (see also SUSE bugzilla) Related CVEs: CVE-2025-69720 CVE-2023-50495 CVE-2023-29491 CVE-2022-29458 CVE-2021-39537 CVE-2018-19211 CVE-2019-17594 CVE-2019-17595  +1 more Upstream summary: The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow […]

Read more
SLES 16 — libthai0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libthai0 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2010:002 (see also SUSE bugzilla) Related CVEs: CVE-2009-4012 Upstream summary: Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer […]

Read more
SLES 15 — python3-setuptools — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-setuptools — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:169-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40897 Upstream summary: Python Packaging Authority (PyPA) setuptools before 65.5.1 allows remote attackers to cause a denial of service via HTML in a crafted package […]

Read more
SLES 16 — libunwind8 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libunwind8 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0284-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-3239 Upstream summary: Off-by-one error in the dwarf_to_unw_regnum function in include/dwarf_i.h in libunwind 1.1 allows local users to have unspecified impact via invalid dwarf opcodes. […]

Read more
CHAT