SLES

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2022-45748 CVE-2024-40724 CVE-2024-45679 CVE-2022-38528 Upstream summary: An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp. Table […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03237-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-6351 CVE-2023-6350 CVE-2025-48174 CVE-2025-48175 Upstream summary: Use after free in libavif in Google Chrome prior to 119.0.6045.199 allowed a remote attacker to potentially exploit heap […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:2008-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-41054 Upstream summary: In `src/havegecmd.c`, the `socket_handler` function performs a credential check on the abstract UNIX socket (`\0/sys/entropy/haveged`). However, while it detects if the connecting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03062-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-23277 CVE-2025-23278 CVE-2025-23279 CVE-2025-23283 CVE-2024-0131 CVE-2024-0147 CVE-2024-0149 CVE-2024-0150  +5 more Upstream summary: NVIDIA Display Driver for Linux and Windows contains a vulnerability in the kernel […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1957-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-14179 CVE-2008-0599 CVE-2012-1823 CVE-2012-2688 CVE-2014-3622 CVE-2024-1874 CVE-2024-4577 CVE-2024-5585  +12 more Upstream summary: In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2007:015 (see also SUSE bugzilla) Related CVEs: CVE-2007-3641 CVE-2022-26280 CVE-2024-20696 CVE-2024-26256 CVE-2006-5680 CVE-2007-3644 CVE-2007-3645 CVE-2015-2304  +12 more Upstream summary: archive_read_support_format_tar.c in libarchive before 2.2.4 does not properly compute the length of a […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2019:1717-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-12447 CVE-2019-12449 CVE-2026-28296 CVE-2019-12448 CVE-2026-28295 CVE-2019-12795 CVE-2019-3827 Upstream summary: An issue was discovered in GNOME gvfs 1.29.4 through 1.41.2. daemon/gvfsbackendadmin.c mishandles file ownership because setfsuid […]

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:2699-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-8037 CVE-2024-52316 CVE-2026-29146 CVE-2026-32990 CVE-2026-34486 CVE-2025-66614 CVE-2025-55752 CVE-2016-3092  +12 more Upstream summary: If an async request was completed by the application at the same time […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1819-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-41205 CVE-2022-40023 Upstream summary: Mako is a template library written in Python. Prior to 1.3.11, TemplateLookup.get_template() is vulnerable to path traversal when a URI starts […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:21139-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-26209 CVE-2024-26134 CVE-2025-64076 CVE-2025-68131 Upstream summary: cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) serialization format. Versions prior to 5.9.0 are […]