SLES

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-5645 Upstream summary: In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:1274-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1270 CVE-2025-32460 CVE-2025-27795 Upstream summary: In GraphicsMagick, a heap buffer overflow was found when parsing MIFF. Table of contents Symptom & Impact Environment & Reproduction […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0757-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-25934 Upstream summary: go-git is a highly extensible git implementation library written in pure Go. Prior to 5.16.5, a vulnerability was discovered in go-git whereby […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0504-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-23303 CVE-2022-23304 CVE-2019-9494 CVE-2019-9498 CVE-2019-9499 CVE-2021-0326 CVE-2021-27803 CVE-2023-52424  +12 more Upstream summary: The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0190-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-0838 Upstream summary: There exists a heap buffer overflow vulnerable in Abseil-cpp. The sized constructors, reserve(), and rehash() methods of absl::{flat,node}hash{set,map} did not impose an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:0018-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-6414 CVE-2014-7821 CVE-2014-3555 CVE-2014-8153 Upstream summary: OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2022:2149-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20180 CVE-2021-20191 CVE-2021-20228 CVE-2021-3447 CVE-2021-3583 CVE-2021-3620 Upstream summary: A flaw was found in ansible module where credentials are disclosed in the console log by default […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:1943-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-3567 Upstream summary: A flaw was found in Caribou due to a regression of CVE-2020-25712 fix. An attacker could use this flaw to bypass screen-locking […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:14763-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-15522 CVE-2019-15523 Upstream summary: An issue was discovered in LINBIT csync2 through 2.0. csync_daemon_session in daemon.c neglects to force a failure of a hello command […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1036-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-0262 CVE-2013-0263 CVE-2013-0269 CVE-2013-0276 CVE-2013-0277 Upstream summary: rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before 1.4.5 allows attackers to access arbitrary files outside […]