SLES

SLES 16 — taglib — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — taglib — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-12678 CVE-2012-2396 CVE-2018-11439 Upstream summary: In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause […]

Read more
SLES 16 — libquicktime0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libquicktime0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0610-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-2399 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 Upstream summary: Integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier allows remote attackers to […]

Read more
SLES 15 — libunbound2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libunbound2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-8602 CVE-2017-15105 Upstream summary: iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of […]

Read more
SLES 12 — pcsc-ccid — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pcsc-ccid — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:003 (see also SUSE bugzilla) Related CVEs: CVE-2010-4530 Upstream summary: Signedness error in ccid_serial.c in libccid in the USB Chip/Smart Card Interface Devices (CCID) driver, as used in pcscd in PCSC-Lite 1.5.3 […]

Read more
SLES 15 — hdf5 — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — hdf5 — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0691-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-37501 CVE-2018-13867 CVE-2018-17439 CVE-2021-45830 CVE-2021-45833 CVE-2021-46242 CVE-2018-11205 CVE-2018-14031  +4 more Upstream summary: Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause […]

Read more
SLES 15 — libgsf — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libgsf — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36474 CVE-2024-42415 Upstream summary: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library […]

Read more
SLES 15 — libzypp-plugin-appdata — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libzypp-plugin-appdata — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0095-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-22643 Upstream summary: An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in libzypp-plugin-appdata of SUSE Linux Enterprise Server […]

Read more
SLES 15 — npm24 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — npm24 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:7350 (see also SUSE bugzilla) Related CVEs: CVE-2026-21712 CVE-2025-59464 Upstream summary: A flaw in Node.js URL processing causes an assertion failure in native code when `url.format()` is called with a malformed internationalized […]

Read more
SLES 12 — libtcnative — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libtcnative — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:14014-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-8020 CVE-2017-15698 CVE-2018-8019 Upstream summary: Apache Tomcat Native 1.2.0 to 1.2.16 and 1.1.23 to 1.1.34 has a flaw that does not properly check OCSP pre-produced […]

Read more
CHAT