SLES

SLES 15 — php7-pear — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — php7-pear — vulnerability — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:2926-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-36193 Upstream summary: Tar.php in Archive_Tar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to […]

Read more
SLES 15 — tftp — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — tftp — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2011-2199 Upstream summary: Buffer overflow in tftp-hpa before 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the […]

Read more
SLES 12 — fastjar — vulnerability — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — fastjar — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:2635-1 (see also SUSE bugzilla) Related CVEs: CVE-2010-2322 Upstream summary: Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98 allows remote attackers to create or overwrite arbitrary files […]

Read more
SLES 15 — whois — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — whois — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SA:2011:035 (see also SUSE bugzilla) Related CVEs: CVE-2011-2483 Upstream summary: crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle […]

Read more
SLES 12 — aspell — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 12

SLES 12 — aspell — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:14783-1 (see also SUSE bugzilla) Related CVEs: CVE-2019-25051 CVE-2019-17544 Upstream summary: objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list). Table of contents Symptom […]

Read more
SLES 15 — pam_pkcs11 — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — pam_pkcs11 — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2025:0688-1 (see also SUSE bugzilla) Related CVEs: CVE-2025-24031 CVE-2025-24032 Upstream summary: PAM-PKCS#11 is a Linux-PAM login module that allows a X.509 certificate based user login. In versions 0.6.12 and prior, the pam_pkcs11 […]

Read more
SLES 16 — cifs-utils — multiple vulnerabilities (4 CVEs) — patch and remediation guide — diagnosis and fix on SLES 16

SLES 16 — cifs-utils — multiple vulnerabilities (4 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2012:0571-1 (see also SUSE bugzilla) Related CVEs: CVE-2012-1586 CVE-2020-14342 CVE-2021-20208 CVE-2022-27239 Upstream summary: mount.cifs in cifs-utils 2.6 allows local users to determine the existence of arbitrary files or directories via the file […]

Read more
SLES 15 — yast2-security — vulnerability — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — yast2-security — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2019-3700 Upstream summary: yast2-security didn't use secure defaults to protect passwords. This became a problem on 2019-10-07 when configuration files that set secure settings were […]

Read more
SLES 15 — socat — multiple vulnerabilities (3 CVEs) — patch and remediation guide — diagnosis and fix on SLES 15

SLES 15 — socat — multiple vulnerabilities (3 CVEs) — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2025:10353 (see also SUSE bugzilla) Related CVEs: CVE-2024-54661 CVE-2013-3571 CVE-2014-0019 Upstream summary: readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file. Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

Read more
CHAT