SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0810-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-5732 CVE-2019-6470 CVE-2021-25217 CVE-2009-1892 CVE-2010-2156 CVE-2010-3611 CVE-2010-3616 CVE-2011-0413  +12 more Upstream summary: Failure to properly bounds-check a buffer used for processing DHCP options allows a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:0489-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-8597 CVE-2022-4603 CVE-2014-3158 CVE-2015-3310 Upstream summary: eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:796-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-3650 CVE-2022-0670 CVE-2022-3854 CVE-2021-3979 Upstream summary: A privilege escalation flaw was found in Ceph. Ceph-crash.service allows a local attacker to escalate privileges to root in […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-6369 CVE-2022-1210 Upstream summary: Stack-based buffer overflow in the jbg_dec_in function in libjbig/jbig.c in JBIG-KIT before 2.1 allows remote attackers to cause a denial of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:875-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-33503 CVE-2025-66418 CVE-2025-66471 CVE-2026-21441 CVE-2025-50181 CVE-2024-37891 CVE-2023-45803 CVE-2018-25091  +2 more Upstream summary: An issue was discovered in urllib3 before 1.26.5. When provided with a URL […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:2553-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-5759 Upstream summary: The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4424-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-4645 CVE-2015-4646 CVE-2021-40153 CVE-2021-41072 CVE-2012-4025 CVE-2012-4024 Upstream summary: Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3268-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25653 CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2017-15108 Upstream summary: A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1123-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-14779 CVE-2018-14780 Upstream summary: A buffer overflow issue was discovered in the Yubico-Piv 1.5.0 smartcard driver. The file lib/ykpiv.c contains the following code in the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1605-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-29040 CVE-2023-22745 CVE-2020-24455 Upstream summary: This repository hosts source code implementing the Trusted Computing Group's (TCG) TPM2 Software Stack (TSS). The JSON Quote Info returned […]