SLES

SLES 12 — cfengine — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cfengine — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2126-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-44215 CVE-2021-44216 Upstream summary: Northern.tech CFEngine Enterprise 3.15.4 before 3.15.5 has Insecure Permissions that may allow unauthorized local users to have an unspecified impact. Table […]

Read more
SLES 15 — osc — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — osc — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:2067-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-3685 CVE-2024-22034 CVE-2015-0778 CVE-2019-3681 CVE-2012-1095 Upstream summary: Open Build Service before version 0.165.4 diddn't validate TLS certificates for HTTPS connections with the osc client binary […]

Read more
SLES 12 — libplist3 — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libplist3 — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0872-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-10082 CVE-2017-6435 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2017-6436 Upstream summary: A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plist_from_xml […]

Read more
SLES 12 — perl-Net-Server — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-Net-Server — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0746-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1841 Upstream summary: Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow […]

Read more
SLES 15 — libgnomesu — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libgnomesu — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2011-1946 Upstream summary: gnomesu-pam-backend in libgnomesu 1.0.0 prints an error message but proceeds with the non-error code path upon failure of the setgid or setuid […]

Read more
SLES 15 — libgraphite2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libgraphite2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:0779-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-1521 CVE-2017-5436 CVE-2018-7999 Upstream summary: The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox […]

Read more
SLES 12 — colord — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — colord — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3496-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-42523 CVE-2011-4349 Upstream summary: There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'err_msg' […]

Read more
SLES 15 — mariadb104 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — mariadb104 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2023:3956-1 (see also SUSE bugzilla) Related CVEs: CVE-2006-0903 CVE-2006-4227 CVE-2007-5969 CVE-2007-6304 CVE-2008-2079 CVE-2006-4226 CVE-2007-6303 Upstream summary: MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms via SQL queries that contain […]

Read more
SLES 16 — xkbcomp — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — xkbcomp — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:232-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-15853 CVE-2018-15859 CVE-2018-15861 CVE-2018-15863 Upstream summary: Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to […]

Read more
SLES 16 — libdw1 — multiple vulnerabilities (11 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libdw1 — multiple vulnerabilities (11 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-0172 CVE-2014-9447 CVE-2019-7148 CVE-2019-7149 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2019-7146  +3 more Upstream summary: Integer overflow in the check_section function in dwarf_begin_elf.c in the libdw library, as […]

Read more
CHAT