SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2008-5984 CVE-2019-19451 Upstream summary: Untrusted search path vulnerability in the Python plugin in Dia 0.96.1, and possibly other versions, allows local users to execute arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2020:773-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-10531 CVE-2020-21913 CVE-2014-8146 CVE-2014-8147 CVE-2014-9654 CVE-2016-6293 CVE-2017-14952 CVE-2017-15422  +3 more Upstream summary: An issue was discovered in International Components for Unicode (ICU) for C/C++ through […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1216-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-2217 Upstream summary: cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2016:2532-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-7447 CVE-2016-6855 Upstream summary: Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2024:3428-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-49582 CVE-2011-0419 CVE-2011-1928 Upstream summary: Lax permissions set by the Apache Portable Runtime library on Unix platforms would allow local users read access to named […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2023:4089-1 (see also SUSE bugzilla) Related CVEs: CVE-2023-40660 CVE-2021-42781 CVE-2021-42782 CVE-2023-5992 CVE-2023-40661 CVE-2023-2977 CVE-2021-42779 CVE-2019-19481  +12 more Upstream summary: A flaw was found in OpenSC packages that allow a potential PIN bypass. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:1504-1 (see also SUSE bugzilla) Related CVEs: CVE-2016-10375 Upstream summary: Yodl before 3.07.01 has a Buffer Over-read in the queue_push function in queue/queuepush.c. Table of contents Symptom & Impact Environment & Reproduction […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory Related CVEs: CVE-2011-3616 Upstream summary: The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SR:2007:025 (see also SUSE bugzilla) Related CVEs: CVE-2007-5497 CVE-2019-5094 Upstream summary: Multiple integer overflows in libext2fs in e2fsprogs before 1.40.3 allow user-assisted remote attackers to execute arbitrary code via a crafted filesystem […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3933-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-0487 CVE-2020-22219 CVE-2021-0561 CVE-2020-0499 CVE-2017-6888 Upstream summary: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none […]