SLES

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0394-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-8605 CVE-2016-8606 Upstream summary: The mkdir procedure of GNU Guile temporarily changed the process' umask to zero. During that time window, in a multithreaded application, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1365-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-29131 CVE-2024-29133 Upstream summary: Out-of-bounds Write vulnerability in Apache Commons Configuration.This issue affects Apache Commons Configuration: from 2.0 before 2.10.1. Users are recommended to upgrade […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-7098 CVE-2012-6128 CVE-2019-16239 CVE-2020-12105 CVE-2020-12823 CVE-2018-20319 CVE-2012-3291 Upstream summary: OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:1686-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-27371 CVE-2013-7038 CVE-2013-7039 Upstream summary: GNU libmicrohttpd before 0.9.76 allows remote DoS (Denial of Service) due to improper parsing of a multipart/form-data boundary in the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1103-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1986 CVE-2016-7947 CVE-2016-7948 Upstream summary: Multiple integer overflows in X.org libXrandr 1.4.0 and earlier allow X servers to trigger allocation of insufficient memory and a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0405-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-3534 Upstream summary: A vulnerability classified as critical has been found in Linux Kernel. Affected is the function btf_dump_name_dups of the file tools/lib/bpf/btf_dump.c of the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4895-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-26592 CVE-2022-43357 CVE-2022-43358 Upstream summary: Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function. Table of contents Symptom & Impact Environment & Reproduction Root […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:1498-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-48303 CVE-2021-20193 CVE-2010-0624 CVE-2016-6321 CVE-2023-39804 CVE-2018-20482 CVE-2019-9923 Upstream summary: GNU Tar through 1.34 has a one-byte out-of-bounds read that results in use of uninitialized memory […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory openSUSE-SU-2025:14997-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-39689 Upstream summary: Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2011-0523 CVE-2011-0524 Upstream summary: gypsy 0.8 does not properly restrict the files that can be read while running with root privileges, which allows local users […]