SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1862-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-2625 Upstream summary: It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-20095 CVE-2021-42771 Upstream summary: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none Table of contents […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14858-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-24439 CVE-2023-40590 CVE-2023-40267 CVE-2023-41040 Upstream summary: All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-3775 Upstream summary: libgadu before 1.11.4 and 1.12.0 before 1.12.0-rc3, as used in Pidgin and other products, allows remote Gadu-Gadu file relay servers to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-0240 CVE-2013-1799 Upstream summary: Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1989-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-5824 CVE-2016-5827 CVE-2016-9584 Upstream summary: libical 1.0 allows remote attackers to cause a denial of service (use-after-free) via a crafted ics file. Table of contents […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0491-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-26937 CVE-2017-5618 CVE-2023-24626 CVE-2025-46802 Upstream summary: encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:14246-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-14228 CVE-2017-17810 CVE-2017-10686 CVE-2017-17811 CVE-2017-17812 CVE-2017-17814 CVE-2017-17815 CVE-2017-17816  +6 more Upstream summary: In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6757 (see also SUSE bugzilla) Related CVEs: CVE-2024-7383 CVE-2021-20286 CVE-2022-0485 CVE-2023-5215 CVE-2023-5871 Upstream summary: A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:800-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-18902 CVE-2019-18903 CVE-2020-7216 CVE-2020-7217 Upstream summary: A Use After Free vulnerability in wicked of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE […]