SLES

SLES 15 — python311-Flask — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — python311-Flask — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:0849-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-27205 Upstream summary: Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and below, when the session object is accessed, […]

Read more
SLES 16 — wget — multiple vulnerabilities (13 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — wget — multiple vulnerabilities (13 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:2871-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-13089 CVE-2017-13090 CVE-2019-5953 CVE-2006-6719 CVE-2010-2252 CVE-2014-4877 CVE-2016-4971 CVE-2017-6508  +5 more Upstream summary: The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. […]

Read more
SLES 15 — conmon — multiple vulnerabilities (8 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — conmon — multiple vulnerabilities (8 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:3473-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-1708 CVE-2021-3602 CVE-2021-20291 CVE-2021-4024 CVE-2020-15157 CVE-2020-14370 CVE-2020-1726 CVE-2021-20199 Upstream summary: A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the […]

Read more
SLES 15 — libnbd — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — libnbd — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:6757 (see also SUSE bugzilla) Related CVEs: CVE-2024-7383 CVE-2022-0485 CVE-2023-5215 CVE-2023-5871 CVE-2021-20286 Upstream summary: A flaw was found in libnbd. The client did not always correctly verify the NBD server's certificate when […]

Read more
SLES 12 — python-keystoneclient — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — python-keystoneclient — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-0105 Upstream summary: The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from […]

Read more
SLES 12 — ocaml — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — ocaml — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:0983-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-9838 CVE-2015-8869 Upstream summary: The caml_ba_deserialize function in byterun/bigarray.c in the standard library in OCaml 4.06.0 has an integer overflow which, in situations where marshalled […]

Read more
SLES 12 — php7 — multiple vulnerabilities (14 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — php7 — multiple vulnerabilities (14 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2017:0534-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-5340 CVE-2016-10162 CVE-2016-7133 CVE-2016-7479 CVE-2016-7480 CVE-2016-9138 CVE-2016-9936 CVE-2017-11142  +6 more Upstream summary: Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that […]

Read more
SLES 15 — perl-Convert-ASN1 — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — perl-Convert-ASN1 — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0172-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-7488 Upstream summary: perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows remote attackers to cause an infinite loop via unexpected input. Table of […]

Read more
SLES 16 — perl-Authen-SASL — vulnerability — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — perl-Authen-SASL — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:03087-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-40918 Upstream summary: Authen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurely. The cnonce (client nonce) is generated from an MD5 hash of […]

Read more
CHAT