SLES

SLES 12 — perl-Crypt-OpenSSL-RSA — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-Crypt-OpenSSL-RSA — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:01884-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-2467 Upstream summary: A timing-based side-channel flaw exists in the perl-Crypt-OpenSSL-RSA package, which could be sufficient to recover plaintext across a network in a Bleichenbacher-style […]

Read more
SLES 15 — xerces-j2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — xerces-j2 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:712-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-23437 Upstream summary: There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads. This causes, the XercesJ […]

Read more
SLES 12 — libva2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libva2 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:1451-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-39929 Upstream summary: Uncontrolled search path in some Libva software maintained by Intel(R) before version 2.20.0 may allow an authenticated user to potentially enable escalation […]

Read more
SLES 15 — go1.13 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — go1.13 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2020-7919 CVE-2020-15586 CVE-2020-14039 CVE-2020-16845 Upstream summary: Go before 1.12.16 and 1.13.x before 1.13.7 (and the crypto/cryptobyte package before 0.0.0-20200124225646-8b5121be2f68 for Go) allows attacks on clients […]

Read more
SLES 12 — openvas-manager — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — openvas-manager — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-9220 Upstream summary: SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the […]

Read more
SLES 12 — libimobiledevice6 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — libimobiledevice6 — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-2142 Upstream summary: userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack […]

Read more
SLES 15 — go1.20 — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — go1.20 — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:4104-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-39326 CVE-2023-39325 CVE-2023-39323 CVE-2023-45285 CVE-2023-45283 CVE-2023-45284 CVE-2023-39318 CVE-2023-39319 Upstream summary: A malicious HTTP sender can use chunk extensions to cause a receiver reading from a […]

Read more
SLES 15 — python311-tqdm — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-tqdm — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2016-10075 CVE-2024-34062 Upstream summary: The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with […]

Read more
SLES 15 — python3-configobj — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-configobj — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2023:602-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-26112 Upstream summary: All versions of the package configobj are vulnerable to Regular Expression Denial of Service (ReDoS) via the validate function, using (.+?)\((.*)\). **Note:** […]

Read more
CHAT