SLES

SLES 16 — libcap2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libcap2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:12423 (see also SUSE bugzilla) Related CVEs: CVE-2026-4878 CVE-2023-2603 CVE-2023-2602 Upstream summary: A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` […]

Read more
SLES 16 — libvmtools0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libvmtools0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:17428 (see also SUSE bugzilla) Related CVEs: CVE-2025-41244 CVE-2022-31676 CVE-2023-20900 CVE-2023-34058 CVE-2023-34059 CVE-2015-5191 CVE-2023-20867 CVE-2025-22247 Upstream summary: VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local […]

Read more
SLES 16 — apache-commons-vfs2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — apache-commons-vfs2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1022-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-30474 CVE-2025-27553 Upstream summary: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Commons VFS. The FtpFileObject class can throw an exception when […]

Read more
SLES 16 — fish — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — fish — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2019:2177-1 Related CVEs: CVE-2014-2905 CVE-2014-2906 CVE-2014-2914 CVE-2014-3219 CVE-2022-20001 CVE-2014-3856 CVE-2023-49284 Upstream summary: fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly check the credentials, which allows local users to gain privileges via […]

Read more
SLES 16 — libct4 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libct4 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1417-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-13508 Upstream summary: FreeTDS through 1.1.11 has a Buffer Overflow. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

Read more
SLES 15 — python311-httpx — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-httpx — vulnerability — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-41945 Upstream summary: Encode OSS httpx < 0.23.0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`. Table of contents […]

Read more
SLES 15 — python3-python3-saml — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-python3-saml — vulnerability — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0048-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-11427 Upstream summary: OneLogin PythonSAML 2.3.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that […]

Read more
SLES 15 — nscd — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — nscd — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:1334 (see also SUSE bugzilla) Related CVEs: CVE-2026-0861 CVE-2025-4802 CVE-2024-33599 CVE-2024-33600 CVE-2024-2961 CVE-2023-6246 CVE-2023-6779 CVE-2023-6780  +12 more Upstream summary: Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, […]

Read more
SLES 12 — perl — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1567-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-20230 CVE-2023-31484 CVE-2018-6913 CVE-2025-40909 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2010-2761  +12 more Upstream summary: Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function […]

Read more
CHAT