SLES

SLES 15 — net-snmp — multiple vulnerabilities (16 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — net-snmp — multiple vulnerabilities (16 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:0668 (see also SUSE bugzilla) Related CVEs: CVE-2025-68615 CVE-2018-18065 CVE-2020-15862 CVE-2015-5621 CVE-2022-44792 CVE-2022-44793 CVE-2022-24805 CVE-2022-24806  +8 more Upstream summary: net-snmp is a SNMP application library, tools and daemon. Prior to versions 5.9.5 […]

Read more
SLES 16 — libidn2 — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libidn2 — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:10-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-12290 CVE-2019-18224 CVE-2015-2059 CVE-2015-8948 CVE-2016-6262 Upstream summary: GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specified in RFC3490 Section 4.2 when converting A-labels […]

Read more
SLES 15 — python2-requests — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python2-requests — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:2518-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-32681 CVE-2018-18074 CVE-2014-1829 CVE-2014-1830 Upstream summary: Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authorization headers to destination servers when redirected […]

Read more
SLES 16 — libnm0 — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libnm0 — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2011:045 (see also SUSE bugzilla) Related CVEs: CVE-2006-7246 CVE-2015-2924 CVE-2018-1000135 CVE-2020-10754 CVE-2021-20297 CVE-2016-0764 Upstream summary: NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used. Table […]

Read more
SLES 15 — bcm43xx-firmware — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — bcm43xx-firmware — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2020-10370 Upstream summary: Certain Cypress (and Broadcom) Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth […]

Read more
SLES 15 — python2-ujson — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python2-ujson — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2134-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-45958 CVE-2022-31116 CVE-2022-31117 Upstream summary: UltraJSON (aka ujson) through 5.1.0 has a stack-based buffer overflow in Buffer_AppendIndentUnchecked (called from encode). Exploitation can, for example, use […]

Read more
SLES 15 — libstaroffice — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libstaroffice — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1076-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-9432 Upstream summary: Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in […]

Read more
SLES 15 — zypper — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — zypper — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:695-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-7685 CVE-2017-7436 CVE-2017-9269 CVE-2017-9271 CVE-2018-20532 CVE-2018-20533 CVE-2019-18900 CVE-2024-0217  +1 more Upstream summary: The decoupled download and installation steps in libzypp before 17.5.0 could lead to […]

Read more
SLES 16 — libsamplerate0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libsamplerate0 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2008-5008 Upstream summary: Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when "extreme low conversion ratios" are used, allows […]

Read more
SLES 12 — perl-Archive-Zip — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-Archive-Zip — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:2385-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10860 Upstream summary: perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while […]

Read more
CHAT