SLES

SLES 16 — python313-ldap — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — python313-ldap — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2025:4454-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-61911 CVE-2025-61912 Upstream summary: python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, the sanitization method `ldap.filter.escape_filter_chars` […]

Read more
SLES 15 — icedtea-web — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — icedtea-web — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:2033-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-10181 CVE-2019-10185 CVE-2013-4349 CVE-2019-10182 CVE-2011-2513 CVE-2011-2514 CVE-2011-3377 CVE-2012-3422  +6 more Upstream summary: It was found that in icedtea-web up to and including 1.7.2 and 1.8.2 […]

Read more
SLES 15 — powerpc-utils — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — powerpc-utils — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:1211-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-4040 Upstream summary: snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing […]

Read more
SLES 12 — telepathy-idle — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — telepathy-idle — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1364-1 (see also SUSE bugzilla) Related CVEs: CVE-2007-6746 Upstream summary: telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the server hostname matches a domain […]

Read more
SLES 15 — libcroco — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libcroco — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-IU-2021:741-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-12825 CVE-2017-7960 CVE-2017-7961 CVE-2017-8834 CVE-2017-8871 Upstream summary: libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption. Table of contents Symptom […]

Read more
SLES 15 — netcdf-gnu-hpc — multiple vulnerabilities (16 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — netcdf-gnu-hpc — multiple vulnerabilities (16 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:3804-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202  +8 more Upstream summary: An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while […]

Read more
SLES 15 — wireshark — multiple vulnerabilities (20 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — wireshark — multiple vulnerabilities (20 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:1347-1 (see also SUSE bugzilla) Related CVEs: CVE-2024-24476 CVE-2024-2955 CVE-2024-0207 CVE-2024-0210 CVE-2024-0211 CVE-2024-0208 CVE-2024-0209 CVE-2023-2859  +12 more Upstream summary: A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause […]

Read more
SLES 12 — python-requests — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-requests — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1218-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-25645 CVE-2024-47081 CVE-2024-35195 CVE-2023-32681 CVE-2018-18074 Upstream summary: Requests is a HTTP library. Prior to version 2.33.0, the `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when […]

Read more
SLES 15 — rtkit — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — rtkit — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2013-4326 Upstream summary: RealtimeKit (aka rtkit) 0.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended […]

Read more
CHAT