SLES

SLES 15 — gnuplot — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — gnuplot — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2020-25412 CVE-2025-31176 CVE-2025-31177 CVE-2025-31178 CVE-2025-31179 CVE-2025-31180 CVE-2025-31181 CVE-2025-3359  +6 more Upstream summary: com_line() in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy() that […]

Read more
SLES 15 — libssh4 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libssh4 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:3162-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10933 CVE-2025-5372 CVE-2019-14889 CVE-2026-3731 CVE-2026-0964 CVE-2026-0966 CVE-2025-8114 CVE-2025-4877  +12 more Upstream summary: A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and […]

Read more
SLES 15 — xwayland — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xwayland — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:10739 (see also SUSE bugzilla) Related CVEs: CVE-2026-34001 CVE-2025-62229 CVE-2025-62230 CVE-2025-62231 CVE-2025-49175 CVE-2025-49176 CVE-2025-49179 CVE-2025-49180  +12 more Upstream summary: A flaw was found in the X.Org X server. This use-after-free vulnerability occurs […]

Read more
SLES 15 — npm20 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — npm20 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:7080 (see also SUSE bugzilla) Related CVEs: CVE-2026-21710 CVE-2025-55130 CVE-2025-55131 CVE-2025-59465 CVE-2025-23166 CVE-2025-23083 CVE-2024-21890 CVE-2024-21891  +12 more Upstream summary: A flaw in Node.js HTTP request handling causes an uncaught `TypeError` when a […]

Read more
SLES 15 — munge — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — munge — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:2918 (see also SUSE bugzilla) Related CVEs: CVE-2026-25506 CVE-2019-3691 Upstream summary: MUNGE is an authentication service for creating and validating user credentials. From 0.5 to 0.5.17, local attacker can exploit a buffer […]

Read more
SLES 15 — libcjson1 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libcjson1 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03520-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-57052 CVE-2023-26819 Upstream summary: cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking […]

Read more
SLES 15 — kernel-default-extra — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — kernel-default-extra — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:12746 (see also SUSE bugzilla) Related CVEs: CVE-2025-22020 Upstream summary: In the Linux kernel, the following vulnerability has been resolved: memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove This fixes the following crash: ================================================================== […]

Read more
SLES 15 — liboqs7 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — liboqs7 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0005-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-37305 CVE-2024-54137 CVE-2024-36405 Upstream summary: oqs-provider is a provider for the OpenSSL 3 cryptography library that adds support for post-quantum cryptography in TLS, X.509, and […]

Read more
SLES 12 — tomcat — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — tomcat — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:4075-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-52316 CVE-2018-8037 CVE-2026-29146 CVE-2026-32990 CVE-2026-34486 CVE-2023-45468 CVE-2025-48989 CVE-2025-66614  +12 more Upstream summary: Unchecked Error Condition vulnerability in Apache Tomcat. If Tomcat is configured to use […]

Read more
SLES 12 — libsndfile1 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libsndfile1 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:14769-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3246 CVE-2025-52194 CVE-2026-37555 CVE-2022-33065 CVE-2018-13139 CVE-2021-4156 CVE-2009-0186 CVE-2011-2696  +12 more Upstream summary: A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to […]

Read more
CHAT