漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Package updates are available for Amazon Linux that fix the following vulnerabilities: CVE-2016-4956: ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (interleaved-mode transition and time change)…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Package updates are available for Amazon Linux that fix the following vulnerabilities: CVE-2016-6250: A vulnerability was found in libarchive. An attempt to create an ISO9660 volume with 2GB or 4GB filenames could cause the applica…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Package updates are available for Amazon Linux that fix the following vulnerabilities: CVE-2016-5386: 1353798: CVE-2016-5386 Go: sets environmental variable based on user supplied Proxy request header An input-validation flaw was d…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Amazon Linux 2012.03 - AL2012-2016-149: medium priority package update for squid 漏洞危害 Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service. 解决方案 Administrators are advised to…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Package updates are available for Amazon Linux that fix the following vulnerabilities: CVE-2016-1000110: 1357334: CVE-2016-1000110 Python CGIHandler: sets environmental variable based on user supplied Proxy request header It was di…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Package updates are available for Amazon Linux that fix the following vulnerabilities: CVE-2016-3092: A denial of service vulnerability was identified in Commons FileUpload that occurred when the length of the multipart boundary wa…
漏洞类别:Cisco 漏洞等级: 漏洞信息 A vulnerability exists in the iox command in Cisco IOS and IOS XE Software that could allow an authenticated, local attacker to perform command injection into the IOx Linux guest operating system (GOS). This vulnerability is due to insuff…
CVE
Cisco IOS Software Data in Motion Component Denial of Service Vulnerability (cisco-sa-20160921-dmo)
漏洞类别:Cisco 漏洞等级: 漏洞信息 A vulnerability in the Cisco Data in Motion (DMo) component for Cisco IOS and IOS XE Software with the IOx feature set could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition for the DMo proces…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 45.4.0 ESR. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could ca…
漏洞类别:General remote services 漏洞等级: 漏洞信息 Radia Client Automation software is an end-user device (PC and mobile device) lifecycle management tool for automating routine client-management tasks such as operating system deployments and upgrades, patch management, …
漏洞类别:Local 漏洞等级: 漏洞信息 VMware Workstation is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems. A local user on a Windows guest system can trigger a heap overflow in Cortado ThinPrint to execute arbitrary code on the Windows h…
漏洞类别:CGI 漏洞等级: 漏洞信息 Zabbix is enterprise-class open source software for monitoring and tracking the status of various network services, servers and other network hardware. The vulnerability exists in the jsrpc.php source file that fails to sanitize user-suppli…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 53.0.2785.113. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing ma…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that the Python Imaging Library incorrectly handled certain malformed FLI or PhotoCD files. It was discovered that the Python Imaging Libray incorrectly validated input. 漏洞危害 A remote attacker could use this issue to ca…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. 漏洞危害 If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser secu…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that MySQL incorrectly handled configuration files. MySQL has been updated to 5.5.52 in Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. Ubuntu 16.04 LTS has been updated to MySQL 5.7.15. In addition to security fixes, the update…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 An issue was discovered in Blink involving the provisional URL for an initially empty document. A use-after-free was discovered in the WebCrypto implementation in Blink. It was discovered that the devtools subsystem in Blink mishandles v…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for mysql-5.5 to fix the vulnerabilities. 漏洞危害 Successful exploitation could allow remote, unauthenticated attackers to execute arbitrary code with root privileges which would then allow them to fully …
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for openjpeg2 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows guest users to cause a denial of service. 解决方案 Refer to Debian security advisory DSA 3665-1 to address this issue and obtai…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for pdns to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3664-1 to address this issue and obtain further de…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for xen to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3663-1 to address this issue and obtain further det…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for inspircd to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3662-1 to address this issue and obtain furthe…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for charybdis to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3661-1 to address this issue and obtain furth…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for chromium-browser to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to inject arbitrary web script or HTML via a crafted web site. 解决方案 Refer to Debian security adviso…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for flex to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3653-2 to address this issue and obtain further de…