SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:02749-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-54351 CVE-2023-38403 CVE-2025-54349 CVE-2025-54350 CVE-2024-53580 CVE-2024-26306 Upstream summary: In iperf before 3.19.1, net.c has a buffer overflow when –skip-rx-copy is used (for MSG_TRUNC in recv). […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:721-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-8287 CVE-2020-15999 CVE-2010-3855 CVE-2011-3256 CVE-2011-3439 CVE-2012-1133 CVE-2012-1134 CVE-2012-1136  +12 more Upstream summary: FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:8795 (see also SUSE bugzilla) Related CVEs: CVE-2023-37536 CVE-2017-12627 CVE-2018-1311 CVE-2009-1885 CVE-2015-0252 CVE-2016-0729 CVE-2016-2099 CVE-2016-4463 Upstream summary: An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1029-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36843 Upstream summary: The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0.3.0 exhibits signature malleability and does not satisfy the SUF-CMA (Strong Existential Unforgeability […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1347-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-24476 CVE-2013-7112 CVE-2018-12086 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18227 CVE-2025-13946  +12 more Upstream summary: A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:4330-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-64324 CVE-2023-26484 CVE-2022-1798 CVE-2025-64432 CVE-2025-64433 CVE-2025-64434 CVE-2025-64435 CVE-2024-33394  +1 more Upstream summary: KubeVirt is a virtual machine management add-on for Kubernetes. The `hostDisk` feature in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0355-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-1484 CVE-2026-1489 CVE-2025-13601 CVE-2025-14087 CVE-2025-6052 CVE-2024-52533 CVE-2023-32643 CVE-2019-13012  +12 more Upstream summary: A flaw was found in the GLib Base64 encoding routine when processing very […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:6-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8631 CVE-2020-8632 CVE-2024-6174 CVE-2019-0816 CVE-2021-3429 CVE-2022-2084 CVE-2023-1786 CVE-2024-11584 Upstream summary: cloud-init through 19.4 relies on Mersenne Twister for a random password, which makes it easier […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory ESSA-2024:0650 (see also SUSE bugzilla) Related CVEs: CVE-2024-3596 CVE-2022-41860 CVE-2022-41861 CVE-2019-17185 CVE-2019-11235 CVE-2022-41859 CVE-2019-13456 CVE-2012-3547  +12 more Upstream summary: RADIUS Protocol under RFC 2865 is susceptible to forgery attacks by a local […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3895-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20378 Upstream summary: ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. Table of contents Symptom & Impact Environment & […]