SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:1100-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-3190 CVE-2016-9082 CVE-2017-7475 CVE-2017-9814 CVE-2019-6461 CVE-2025-50422 CVE-2019-6462 Upstream summary: The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:108-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-12762 Upstream summary: json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend. Table of contents […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:1457-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-8076 CVE-2015-8077 CVE-2015-8078 CVE-2009-3235 CVE-2011-3372 Upstream summary: The index_urlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2015:1730-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-0259 Upstream summary: OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1915-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-1774 CVE-2015-4551 CVE-2015-5212 CVE-2015-5213 CVE-2015-5214 Upstream summary: The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:3066-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-11624 CVE-2017-11625 CVE-2017-11627 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2017-11626 CVE-2017-12595 Upstream summary: A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2009-0035 Upstream summary: alsa-utils 1.0.19 and later versions allows local users to overwrite arbitrary files via a symlink attack via the /usr/bin/alsa-info and /usr/bin/alsa-info.sh scripts. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2798-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 CVE-2019-18898 Upstream summary: An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2022:0444-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-13132 CVE-2019-6250 CVE-2020-15166 CVE-2014-7202 CVE-2014-7203 CVE-2014-9721 Upstream summary: In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4.3.2, a remote, unauthenticated client connecting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:1658-1 (see also SUSE bugzilla) Related CVEs: CVE-2004-2771 CVE-2014-7844 Upstream summary: The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to […]