SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:3895-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20378 Upstream summary: ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. Table of contents Symptom & Impact Environment & […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0800-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-28364 CVE-2017-9772 CVE-2018-9838 CVE-2015-8869 Upstream summary: In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:12176 (see also SUSE bugzilla) Related CVEs: CVE-2026-30922 CVE-2026-23490 Upstream summary: pyasn1 is a generic ASN.1 library for Python. Prior to 0.6.3, the `pyasn1` library is vulnerable to a Denial of Service […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-12402 CVE-2021-35515 CVE-2021-35516 CVE-2021-35517 CVE-2021-36090 CVE-2024-25710 CVE-2024-26308 Upstream summary: The file name encoding algorithm used internally in Apache Commons Compress 1.15 to 1.18 can get […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36474 CVE-2024-42415 CVE-2016-9888 Upstream summary: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:10950 (see also SUSE bugzilla) Related CVEs: CVE-2026-4224 CVE-2026-1299 CVE-2026-0672 CVE-2023-40217 CVE-2023-24329 CVE-2021-28861 CVE-2015-20107 CVE-2008-2315  +12 more Upstream summary: When an Expat parser with a registered ElementDeclHandler parses an inline document type […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:1334 (see also SUSE bugzilla) Related CVEs: CVE-2026-0861 CVE-2015-5180 CVE-2015-7547 CVE-2017-1000366 CVE-2017-1000408 CVE-2017-1000409 CVE-2018-1000001 CVE-2018-11236  +12 more Upstream summary: Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1019-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-24049 Upstream summary: Unknown. Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary Fix Solution […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2026:20990-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-25727 CVE-2021-25900 CVE-2023-38633 CVE-2011-3146 CVE-2013-1881 CVE-2019-20446 CVE-2024-43806 CVE-2017-11464 Upstream summary: time provides date and time handling in Rust. From 0.3.6 to before 0.3.47, when user-provided […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:7430 (see also SUSE bugzilla) Related CVEs: CVE-2025-3155 Upstream summary: A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows […]