SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0603-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-0804 Upstream summary: An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Information Disclosure […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-7524 Upstream summary: tpm2-tools versions before 1.1.1 are vulnerable to a password leak due to transmitting password in plaintext from client to server when generating […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2022:0444-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-4314 Upstream summary: The X509Extension in pyOpenSSL before 0.13.1 does not properly handle a '\0' character in a domain name in the Subject Alternative Name […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03457-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-9375 Upstream summary: XML Injection vulnerability in xmltodict allows Input Data Manipulation. This issue affects xmltodict: from 0.14.2 before 0.15.1. NOTE: the scope of this […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:139-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20288 CVE-2021-3509 CVE-2021-3531 CVE-2018-10861 CVE-2018-1128 CVE-2018-1129 CVE-2019-10222 CVE-2019-3821  +12 more Upstream summary: An authentication flaw was found in ceph in versions before 14.2.20. When the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:108-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-4122 CVE-2020-14382 Upstream summary: It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1106-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-28085 CVE-2014-9114 CVE-2016-2779 CVE-2017-2616 CVE-2018-7738 CVE-2026-3184 CVE-2025-14104 CVE-2021-37600  +6 more Upstream summary: wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0368-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-69277 CVE-2025-15444 Upstream summary: libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishandles checks for whether an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02448-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-0718 Upstream summary: A flaw was found in python-oslo-utils. Due to improper parsing, passwords with a double quote ( " ) in them cause incorrect […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-0074 CVE-2024-0075 CVE-2022-42265 CVE-2023-31022 Upstream summary: NVIDIA GPU Display Driver for Linux contains a vulnerability where an attacker may access a memory location after the […]