Troubleshooting

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2026:5913 (see also SUSE bugzilla) Related CVEs: CVE-2025-69720 CVE-2023-50495 CVE-2023-29491 CVE-2022-29458 CVE-2021-39537 CVE-2018-19211 CVE-2019-17594 CVE-2019-17595  +1 more Upstream summary: The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2026:1436-1 (see also SUSE bugzilla) Related CVEs: CVE-2026-33936 Upstream summary: The `ecdsa` PyPI package is a pure Python implementation of ECC (Elliptic Curve Cryptography) with support for ECDSA (Elliptic Curve Digital Signature […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:0270-1 (see also SUSE bugzilla) Related CVEs: CVE-2014-9114 CVE-2016-2779 CVE-2017-2616 CVE-2024-28085 CVE-2025-14104 CVE-2026-3184 CVE-2021-3995 CVE-2021-3996  +4 more Upstream summary: Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2019:695-1 (see also SUSE bugzilla) Related CVEs: CVE-2017-7435 Upstream summary: In libzypp before 20170803 it was possible to add unsigned YUM repositories without warning to the user that could lead to man […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-CU-2023:496-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-40023 Upstream summary: Sqlalchemy mako before 1.2.2 is vulnerable to Regular expression Denial of Service when using the Lexer class to parse. This also affects […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2015:1892-1 (see also SUSE bugzilla) Related CVEs: CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 Upstream summary: libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:0504-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-23303 CVE-2022-23304 CVE-2019-9494 CVE-2019-9498 CVE-2019-9499 CVE-2021-0326 CVE-2021-27803 CVE-2023-52424  +12 more Upstream summary: The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2014-0105 Upstream summary: The auth_token middleware in the OpenStack Python client library for Keystone (aka python-keystoneclient) before 0.7.0 does not properly retrieve user tokens from […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-RU-2019:0880-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-12476 CVE-2018-12473 CVE-2018-12474 Upstream summary: Relative Path Traversal vulnerability in obs-service-tar_scm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2022:2872-1 (see also SUSE bugzilla) Related CVEs: CVE-2022-31081 Upstream summary: HTTP::Daemon is a simple http server class written in perl. Versions prior to 6.15 are subject to a vulnerability which could potentially […]