SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:139-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20288 CVE-2021-3509 CVE-2021-3531 CVE-2018-10861 CVE-2018-1128 CVE-2018-1129 CVE-2019-10222 CVE-2019-3821  +12 more Upstream summary: An authentication flaw was found in ceph in versions before 14.2.20. When the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:108-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-4122 CVE-2020-14382 Upstream summary: It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1106-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28085 CVE-2014-9114 CVE-2016-2779 CVE-2017-2616 CVE-2018-7738 CVE-2026-3184 CVE-2025-14104 CVE-2021-37600  +6 more Upstream summary: wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0368-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-69277 CVE-2025-15444 Upstream summary: libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02448-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-0718 Upstream summary: A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-0074 CVE-2024-0075 CVE-2022-42265 CVE-2023-31022 Upstream summary: NVIDIA GPU Display Driver for Linux contains a vulnerability where an attacker may access a memory location after the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:23479 (see also SUSE bugzilla) Related CVEs: CVE-2025-61985 Upstream summary: ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:02203-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-12224 CVE-2023-50711 CVE-2025-3416 Upstream summary: Improper Validation of Unsafe Equivalence in punycode by the idna crate from Servo rust-url allows an attacker to create a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0145-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-45417 Upstream summary: AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0664-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36241 Upstream summary: autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNOME Shell, Nautilus, and other software, allows Directory Traversal during extraction because it […]