SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0072-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-7542 Upstream summary: A vulnerability exists in libgwenhywfar through 4.12.0 due to the usage of outdated bundled CA certificates. Table of contents Symptom & Impact […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2010:020 (see also SUSE bugzilla) Related CVEs: CVE-2009-3245 CVE-2009-4355 CVE-2009-5146 CVE-2010-4180 CVE-2010-4252 CVE-2011-4109 CVE-2011-4354 CVE-2011-5095  +4 more Upstream summary: OpenSSL before 0.9.8m does not check for a NULL return value from bn_wexpand […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02809-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-32650 CVE-2025-58266 CVE-2023-26964 Upstream summary: Rustls is a modern TLS library written in Rust. `rustls::ConnectionCommon::complete_io` could fall into an infinite loop based on network input. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0885-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-14928 CVE-2020-16117 Upstream summary: evolution-data-server (eds) through 3.36.3 has a STARTTLS buffering issue that affects SMTP and POP3. When a server sends a "begin TLS" […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:658-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19977 Upstream summary: libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:2105-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-2810 Upstream summary: An exploitable vulnerability exists in the Databook loading functionality of Tablib 0.11.4. A yaml loaded Databook can execute arbitrary python commands resulting […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:2601-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-1000198 CVE-2017-1000199 Upstream summary: tcmu-runner daemon version 0.9.0 to 1.2.0 is vulnerable to invalid memory references in the handler_glfs.so handler resulting in denial of service […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1052-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-25032 CVE-2022-37434 CVE-2023-45853 CVE-2026-27171 CVE-2016-9843 Upstream summary: zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2014-4362 Upstream summary: The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2021:127-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20305 CVE-2021-3580 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-6489 CVE-2018-16869 CVE-2023-36660 Upstream summary: A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification […]