SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10848 (see also SUSE bugzilla) Related CVEs: CVE-2024-6174 CVE-2020-8631 CVE-2020-8632 CVE-2024-11584 CVE-2021-3429 CVE-2022-2084 CVE-2023-1786 CVE-2019-0816 Upstream summary: When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0327-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-68156 CVE-2025-47913 CVE-2025-11065 CVE-2025-58058 Upstream summary: Expr is an expression language and expression evaluation for Go. Prior to version 1.17.7, several builtin functions in Expr, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03052-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-20053 CVE-2025-20109 CVE-2025-22839 CVE-2025-22840 CVE-2025-22889 CVE-2025-26403 CVE-2025-32086 CVE-2024-21820  +12 more Upstream summary: Improper buffer restrictions for some Intel(R) Xeon(R) Processor firmware with SGX enabled may […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:20479-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-6018 CVE-2020-16125 CVE-2011-1709 CVE-2017-12164 CVE-2018-14424 CVE-2019-3825 CVE-2020-27837 CVE-2015-7496 Upstream summary: A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:10978 (see also SUSE bugzilla) Related CVEs: CVE-2024-12254 CVE-2024-4030 CVE-2023-6507 Upstream summary: Starting in Python 3.12.0, the asyncio._SelectorSocketTransport.writelines() method would not "pause" writing and signal to the Protocol to drain the buffer […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0960-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-6438 CVE-2016-10030 CVE-2020-27745 CVE-2022-29500 CVE-2022-29501 CVE-2022-29502 CVE-2024-48936 CVE-2017-15566  +10 more Upstream summary: SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems. Table of […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:177-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-18218 CVE-2012-1571 CVE-2014-3710 CVE-2014-8116 CVE-2014-8117 CVE-2019-8905 CVE-2019-8906 CVE-2019-8907  +4 more Upstream summary: cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2012:0311-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-0804 CVE-2017-12836 Upstream summary: Heap-based buffer overflow in the proxy_connect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:0579-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-12178 CVE-2023-45232 CVE-2023-45233 CVE-2023-45235 CVE-2022-36765 CVE-2023-45230 CVE-2023-45234 CVE-2021-38578  +12 more Upstream summary: Buffer overflow in network stack for EDK II may allow unprivileged user to […]