SLES

SLES 15 — apache-commons-configuration2 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — apache-commons-configuration2 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-33980 Upstream summary: Apache Commons Configuration performs variable interpolation, allowing properties to be dynamically evaluated and expanded. The standard format for interpolation is "${prefix:name}", where […]

Read more
SLES 15 — libxmltooling9 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libxmltooling9 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2766-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-36661 Upstream summary: Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyInfo element. (This is fixed […]

Read more
SLES 15 — wavpack — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — wavpack — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0186-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-10536 CVE-2018-10537 CVE-2018-6767 CVE-2020-35738 CVE-2021-44269 CVE-2018-10538 CVE-2018-10539 CVE-2018-10540  +7 more Upstream summary: An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component […]

Read more
SLES 16 — taglib — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — taglib — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-12678 CVE-2012-2396 CVE-2018-11439 Upstream summary: In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause […]

Read more
SLES 16 — libquicktime0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — libquicktime0 — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0610-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-2399 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 Upstream summary: Integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier allows remote attackers to […]

Read more
SLES 15 — libunbound2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libunbound2 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-8602 CVE-2017-15105 Upstream summary: iterator.c in NLnet Labs Unbound before 1.5.1 does not limit delegation chaining, which allows remote attackers to cause a denial of […]

Read more
SLES 12 — pcsc-ccid — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — pcsc-ccid — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:003 (see also SUSE bugzilla) Related CVEs: CVE-2010-4530 Upstream summary: Signedness error in ccid_serial.c in libccid in the USB Chip/Smart Card Interface Devices (CCID) driver, as used in pcscd in PCSC-Lite 1.5.3 […]

Read more
SLES 15 — hdf5 — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — hdf5 — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:0691-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-37501 CVE-2018-13867 CVE-2018-17439 CVE-2021-45830 CVE-2021-45833 CVE-2021-46242 CVE-2018-11205 CVE-2018-14031  +4 more Upstream summary: Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause […]

Read more
SLES 15 — libgsf — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libgsf — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3770-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-36474 CVE-2024-42415 Upstream summary: An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library […]

Read more
CHAT