Troubleshooting

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0491-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-26937 CVE-2025-46802 CVE-2015-6806 Upstream summary: encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3268-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-25653 CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2017-15108 Upstream summary: A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-FU-2022:0484-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-35331 Upstream summary: In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crafted file. NOTE: multiple third parties dispute […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0186-1 (see also SUSE bugzilla) Related CVEs: CVE-2020-35738 CVE-2022-2476 CVE-2018-19840 CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 Upstream summary: WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2020:3231-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-17955 Upstream summary: In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection Table of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 16 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2013:1099-1 (see also SUSE bugzilla) Related CVEs: CVE-2013-1982 Upstream summary: Multiple integer overflows in X.org libXext 1.3.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2021:0772-1 (see also SUSE bugzilla) Related CVEs: CVE-2021-20230 CVE-2013-1762 CVE-2011-2940 CVE-2014-0016 CVE-2015-3644 Upstream summary: A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 12 📖 ~4 min read  •  Source: SUSE advisory SUSE-SU-2018:3963-1 (see also SUSE bugzilla) Related CVEs: CVE-2018-11759 CVE-2024-46544 CVE-2023-41081 CVE-2007-0774 CVE-2008-5519 Upstream summary: The Apache Web Server (httpd) specific code that normalised the requested path before matching it to the URI-worker […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE advisory RHSA-2024:9243 (see also SUSE bugzilla) Related CVEs: CVE-2023-51764 CVE-2023-32182 Upstream summary: Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in recent versions). […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: SLES 15 📖 ~4 min read  •  Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2009-2694 CVE-2010-0013 CVE-2011-3594 CVE-2012-6152 CVE-2017-2640 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083  +12 more Upstream summary: The msn_slplink_process_msg function in libpurple/protocols/msn/slplink.c in libpurple, as used in Pidgin (formerly Gaim) […]