SLES

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:1830-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-25009 CVE-2018-25010 CVE-2018-25011 CVE-2018-25012 CVE-2018-25013 CVE-2020-36331 CVE-2023-4863 CVE-2023-1999  +3 more Upstream summary: A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1119-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-15052 CVE-2021-29428 CVE-2023-35947 CVE-2023-35946 CVE-2021-29429 CVE-2021-32751 CVE-2019-16370 Upstream summary: The HTTP client in Gradle before 5.6 sends authentication credentials originally destined for the configured host. […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:15033-1 Related CVEs: CVE-2017-9232 CVE-2020-36846 CVE-2022-45157 CVE-2023-0109 CVE-2023-42818 CVE-2024-22036 CVE-2024-28892 CVE-2024-39223  +12 more Upstream summary: Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without setting […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:3044-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3781 CVE-2025-27832 CVE-2025-27835 CVE-2025-27836 CVE-2024-46951 CVE-2024-46953 CVE-2024-46956 CVE-2024-33871  +12 more Upstream summary: A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was found in […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2627-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-3515 CVE-2022-47629 CVE-2014-9087 CVE-2016-4574 CVE-2016-4579 Upstream summary: A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-29361 CVE-2024-3116 CVE-2025-12764 CVE-2025-12765 CVE-2025-9636 CVE-2025-27152 CVE-2023-1907 CVE-2024-38355  +12 more Upstream summary: Improper parsing of HTTP requests in Pallets Werkzeug v2.1.0 and below allows attackers […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-1000005 CVE-2018-1000301 CVE-2026-1965 CVE-2025-9086 CVE-2013-1944 CVE-2018-0500 CVE-2019-15601 CVE-2020-8177  +12 more Upstream summary: libcurl 7.49.0 to and including 7.57.0 contains an out bounds read in code […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03193-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-40929 Upstream summary: Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-27378 CVE-2021-32714 CVE-2022-24713 CVE-2020-35905 CVE-2020-36465 CVE-2021-32715 CVE-2021-38191 Upstream summary: An issue was discovered in the rand_core crate before 0.6.2 for Rust. Because read_u32_into and read_u64_into […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:1338-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1996 CVE-2024-25621 CVE-2025-64329 CVE-2024-40635 CVE-2023-25153 CVE-2023-25173 CVE-2022-23471 Upstream summary: Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3.8.0. Table of contents Symptom […]