SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:20961-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-5791 Upstream summary: A flaw was found in the user's crate for Rust. This vulnerability allows privilege escalation via incorrect group listing when a user […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:1902 (see also SUSE bugzilla) Related CVEs: CVE-2026-24049 Upstream summary: wheel is a command line tool for manipulating Python wheel files, as defined in PEP 427. In versions 0.40.0 through 0.46.1, the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:712-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-33813 Upstream summary: An XXE issue in SAXBuilder in JDOM through 2.0.6 allows attackers to cause a denial of service via a crafted HTTP request. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:1641-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-32490 CVE-2021-32491 CVE-2021-32492 CVE-2021-32493 CVE-2021-3500 CVE-2021-3630 CVE-2019-15142 CVE-2019-15143  +6 more Upstream summary: A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds write […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0135-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-23301 Upstream summary: Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to gain access to system secrets […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2741-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10696 CVE-2024-24786 CVE-2022-27651 CVE-2022-2990 CVE-2024-28180 Upstream summary: A path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0648-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-1837 CVE-2025-12474 Upstream summary: A specially-crafted file can cause libjxl's decoder to write pixel data to uninitialized unallocated memory. Soon after that data from another […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1192-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-27459 CVE-2026-27448 Upstream summary: pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3939-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-47220 CVE-2018-1000074 CVE-2020-10663 CVE-2021-31799 CVE-2021-31810 CVE-2021-32066 CVE-2018-8777 CVE-2015-9096  +12 more Upstream summary: An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:9180 (see also SUSE bugzilla) Related CVEs: CVE-2024-24814 CVE-2025-31492 CVE-2019-14857 CVE-2021-32785 CVE-2021-32786 CVE-2022-23527 Upstream summary: mod_auth_openidc is an OpenID Certified(tm) authentication and authorization module for the Apache 2.x HTTP server that implements […]