SLES

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0394-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-8605 CVE-2016-8606 Upstream summary: The mkdir procedure of GNU Guile temporarily changed the process' umask to zero. During that time window, in a multithreaded application, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:3386-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-19191 CVE-2017-16852 Upstream summary: Shibboleth Service Provider (SP) 3.x before 3.1.0 shipped a spec file that calls chown on files in a directory controlled by […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:1681-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10759 CVE-2022-3287 Upstream summary: A PGP signature bypass flaw was found in fwupd (all versions), which could lead to the installation of unsigned firmware. As […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2925-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-36824 CVE-2023-28425 CVE-2023-41053 Upstream summary: Redis is an in-memory database that persists on disk. In Redit 7.0 prior to 7.0.12, extracting key names from a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:3392-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-14608 CVE-2021-3624 CVE-2018-19566 CVE-2018-19568 CVE-2018-5805 CVE-2018-5806 CVE-2017-13735 CVE-2018-19655  +3 more Upstream summary: In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2021-30860 CVE-2020-36023 CVE-2019-16115 CVE-2019-9545 Upstream summary: An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 Upstream summary: contrib/pdfmark/pdfroff.sh in GNU troff (aka groff) before 1.21 allows local users to overwrite arbitrary files via a symlink attack on […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory GHSA-hqxw-f8mx-cpmw (see also SUSE bugzilla) Related CVEs: CVE-2023-2253 CVE-2017-11468 Upstream summary: A flaw was found in the `/v2/_catalog` endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:0774-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-0210 CVE-2014-0211 CVE-2011-2895 CVE-2013-6462 CVE-2014-0209 CVE-2015-1802 CVE-2015-1803 CVE-2015-1804  +3 more Upstream summary: Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2011:0898-1 (see also SUSE bugzilla) Related CVEs: CVE-2011-1831 CVE-2011-1832 CVE-2011-1834 CVE-2011-1835 CVE-2011-1837 CVE-2011-1833 CVE-2014-9687 CVE-2016-1572  +1 more Upstream summary: utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows […]