SLES

SLES 15 — libexempi3 — multiple vulnerabilities (7 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libexempi3 — multiple vulnerabilities (7 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:3734-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-18651 CVE-2020-18652 CVE-2018-12648 CVE-2018-7728 CVE-2018-7729 CVE-2018-7730 CVE-2018-7731 Upstream summary: Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause […]

Read more
SLES 15 — rpm — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — rpm — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:695-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-7500 CVE-2021-3521 CVE-2021-3421 CVE-2021-20266 CVE-2021-20271 Upstream summary: It was found that rpm did not properly handle RPM installations when a destination path was a symbolic […]

Read more
SLES 12 — perl-HTTP-Daemon — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — perl-HTTP-Daemon — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2872-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-31081 Upstream summary: HTTP::Daemon is a simple http server class written in perl. Versions prior to 6.15 are subject to a vulnerability which could potentially […]

Read more
SLES 15 — python3-scipy — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python3-scipy — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:2970-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-29824 CVE-2023-25399 Upstream summary: A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that […]

Read more
SLES 12 — bash — multiple vulnerabilities (12 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — bash — multiple vulnerabilities (12 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2014:1212-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-6271 CVE-2014-6277 CVE-2014-6278 CVE-2014-7169 CVE-2016-9401 CVE-2012-6711 CVE-2014-7186 CVE-2014-7187  +4 more Upstream summary: GNU Bash through 4.3 processes trailing strings after function definitions in the values […]

Read more
SLES 15 — libtirpc3 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libtirpc3 — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2025-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-46828 Upstream summary: In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are […]

Read more
SLES 12 — cron — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — cron — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2006:027 (see also SUSE bugzilla) Related CVEs: CVE-2006-2607 CVE-2010-0424 CVE-2019-9704 CVE-2019-9705 Upstream summary: do_command.c in Vixie cron (vixie-cron) 4.1 does not check the return code of a setuid call, which might allow […]

Read more
SLES 12 — evince — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — evince — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:14141-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-1010006 CVE-2017-1000159 CVE-2010-2640 CVE-2010-2641 CVE-2010-2642 CVE-2010-2643 CVE-2017-1000083 CVE-2019-11459 Upstream summary: Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. […]

Read more
SLES 15 — libsmi — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libsmi — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2011:001 (see also SUSE bugzilla) Related CVEs: CVE-2010-2891 Upstream summary: Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier […]

Read more
CHAT