SLES

SLES 12 — rubygem-passenger — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — rubygem-passenger — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:2337-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-7519 CVE-2017-1000384 CVE-2017-16355 CVE-2018-12029 Upstream summary: agent/Core/Controller/SendRequest.cpp in Phusion Passenger before 4.0.60 and 5.0.x before 5.0.22, when used in Apache integration mode or in standalone […]

Read more
SLES 12 — perl-DBI — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-DBI — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:14510-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-7490 CVE-2019-20919 CVE-2020-14392 CVE-2020-14393 CVE-2014-10401 CVE-2014-10402 Upstream summary: An issue was discovered in the DBI module before 1.632 for Perl. Using many arguments to methods […]

Read more
SLES 16 — ved — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — ved — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:1128-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-1000156 Upstream summary: GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITOR_PROGRAM invocation (using ed) can result in […]

Read more
SLES 15 — libfreetype6 — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libfreetype6 — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:721-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-8287 CVE-2009-0946 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814  +12 more Upstream summary: FreeType 2 before 2017-03-26 has an out-of-bounds write caused by a heap-based buffer […]

Read more
SLES 12 — netpbm — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — netpbm — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:0434-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-5849 CVE-2017-2579 CVE-2017-2580 CVE-2017-2581 CVE-2017-2586 CVE-2017-2587 CVE-2018-8975 Upstream summary: tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote attackers […]

Read more
SLES 16 — xalan-j2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — xalan-j2 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:0870-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-0107 Upstream summary: The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote […]

Read more
SLES 15 — libXrandr2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libXrandr2 — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1103-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1986 CVE-2016-7947 CVE-2016-7948 Upstream summary: Multiple integer overflows in X.org libXrandr 1.4.0 and earlier allow X servers to trigger allocation of insufficient memory and a […]

Read more
SLES 12 — gdb — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — gdb — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3179-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-48064 CVE-2019-1010180 CVE-2017-16829 CVE-2018-7208 Upstream summary: GNU Binutils before 2.40 was discovered to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. […]

Read more
CHAT