漏洞类别:RedHat 漏洞等级: 漏洞信息 Red Hat Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fix(es): * An insufficient permission check issue w…
漏洞类别:跨站攻击 漏洞等级: 漏洞详情: 【风险概述】:导致论坛站点用户信息被窃取等风险; 【漏洞描述】:Discuz的helper_mobile.php存在跨站漏洞,攻击者可利用该漏洞窃取论坛站点用户信息。 【影响版本】:全版本 【修复建议】: 修改文件:source/class/helper/helper_mobile.php 找到以下两行: $query_sting_tmp = str_replace(array('&mobile=yes','mobile=yes'), array(''), $…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 It was discovered that the Python CGIHandler class did not properly protect against the HTTP_PROXY variable name clash in a CGI context. A remote attacker could possibly use this flaw to redirect HTTP requests performed by a Python…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A use after free vulnerability was found in tcp_xmit_retransmit_queue and other tcp_* functions. 漏洞危害 Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service. 解决方案 Please refer …
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A heap-based buffer overflow in the parse_packet function in network.c in collectd allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet. 漏洞危害 Allows una…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A heap-based buffer overflow in the parse_packet function in network.c in collectd allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted network packet. 漏洞危害 Allows una…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A use after free vulnerability was found in tcp_xmit_retransmit_queue and other tcp_* functions. 漏洞危害 Allows unauthorized disclosure of information; allows unauthorized modification; allows disruption of service. 解决方案 Please refer …
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 It was discovered that the Python CGIHandler class did not properly protect against the HTTP_PROXY variable name clash in a CGI context. A remote attacker could possibly use this flaw to redirect HTTP requests performed by a Python…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for phpmyadmin to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a patch.…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for typo3-cms-4_5 to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for phpmyadmin to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages whi…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for firefox to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a patch. To…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for imagemagick to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for the linux kernel to fix the vulnerabilities. Affected Products: openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for libidn to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a patch…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for roundcubemail to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a pat…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for iperf to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which co…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for python3 to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for pdns to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which con…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for apache2-mod_fcgid to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packa…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for typo3-cms-4_7 to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for roundcubemail to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for roundcubemail to fix the vulnerabilities. Affected Products: openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a pat…
漏洞类别:SUSE漏洞等级: 漏洞信息 Suse has released security update for harfbuzz to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 openSUSE 13.2 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for squid to fix the vulnerabilities. Affected Products: openSUSE Leap 42.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a patch.…