SLES

SLES 16 — libgoa — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libgoa — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-0240 CVE-2013-1799 Upstream summary: Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts […]

Read more
SLES 15 — stunnel — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — stunnel — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:0709-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1762 CVE-2021-20230 CVE-2015-3644 CVE-2011-2940 CVE-2014-0016 Upstream summary: stunnel 4.21 through 4.54, when CONNECT protocol negotiation and NTLM authentication are enabled, does not correctly perform integer […]

Read more
SLES 15 — libopus0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libopus0 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0436-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-0381 Upstream summary: An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could enable a local malicious application to access data outside of its […]

Read more
SLES 15 — tcpdump — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tcpdump — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:1765-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-16301 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924  +12 more Upstream summary: The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in […]

Read more
SLES 15 — libqb0 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libqb0 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1791-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-12779 Upstream summary: libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and […]

Read more
SLES 16 — suse-module-tools — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — suse-module-tools — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:2960-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-1829 CVE-2023-23559 Upstream summary: A use-after-free vulnerability in the Linux Kernel traffic control index filter (tcindex) can be exploited to achieve local privilege escalation. The […]

Read more
SLES 15 — libtspi1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libtspi1 — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2798-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 CVE-2019-18898 Upstream summary: An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of […]

Read more
SLES 12 — ibus — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ibus — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:2387-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-14822 Upstream summary: A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to […]

Read more
SLES 12 — pam_yubico — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pam_yubico — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2018-9275 Upstream summary: In check_user_token in util.c in the Yubico PAM module (aka pam_yubico) 2.18 through 2.25, successful logins can leak file descriptors to the […]

Read more
SLES 15 — libusbmuxd — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libusbmuxd — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:1639-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-5104 Upstream summary: The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on […]

Read more
CHAT