近日来自中国的1937CN黑客组织制作了影片,向印度总理莫迪以及印度人民喊话。 https://youtu.be/9bbEXi3Rquo 视频中黑客自称来自“中国非政府组织1937CN TEAM”,该组织声称: 印度军队越界阻挠中方修路,这是属于入侵行为,中方多次要求印度撤军,没有得到满意答复,现在中印对峙很有可能滑向战争,这是中印两国人民都不想看到的结果,这是印度政治家的错误。 1962年印度侵略中国领土,中国军队自卫反击,打击了印度尼赫鲁政府的霸权主义和扩张政策。如今印度再次入侵中国西藏,中国人民强烈…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Out-of-bounds heap write in bitset_set_range(): An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs in bitset_set_range() d…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A vulnerability was reported in the CloudFormation bootstrap tools, different from the one in CVE-2017-9450 , where default behavior in the handling of cfn-init metadata can provide escalated privileges to an attacker with local ac…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Out-of-bounds read in fr_dhcp_decode_options(): An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a s…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 possible OP-TEE Bleichenbacher attack: The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which …
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 ap_find_token() buffer overread: A buffer over-read flaw was found in the httpd's ap_find_token() function. A remote attacker could use this flaw to cause httpd child process to crash via a specially crafted HTTP request. (CVE-2017…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Security constrained bypass in error page mechanism: A vulnerability was discovered in the error page mechanism in Tomcat's DefaultServlet implementation. A crafted HTTP request could cause undesired side effects, possibly includin…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for nasm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Mal…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for nasm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 漏洞危害 This vulnerability could be exploite…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This …
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for libzypp, zypper to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This v…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for mariadb to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP3 SU…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can be used to cause a limited…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for systemd to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 漏洞危害 This vulnerabi…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for varnish to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability will lead to a Denial of Service. 解决方案 Refer to Debian security advisory DSA 3924-1 to address this issue and o…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for freerdp to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability will lead to a malicious remote server or a man-in-the-middle to either cause a DoS by forcibly terminating the…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for mysql-5.5 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3922-1 to address this issue and obtain furth…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for enigmail to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3921-1 to address this issue and obtain furthe…
漏洞类别:RedHat 漏洞等级: 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. Multiple flaws were found in gstreamer1, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-bad-free packages. An atta…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Git is a distributed revision control system with a decentralized architecture. It was found that the git-prompt.sh script shipped with git failed to correctly handle branch names containing special characters. A specially crafted git re…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine archi…
漏洞类别:RedHat 漏洞等级: 漏洞信息 PostgreSQL is an advanced object-relational database management system (DBMS). It was found that some selectivity estimation functions did not check user privileges before providing information from pg_statistic, possibly leaking informa…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The bash packages provide Bash (Bourne-again shell), which is the default shell for Red Hat Enterprise Linux. An arbitrary command injection flaw was found in the way bash processed the hostname value. A malicious DHCP server could use t…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for moodle to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决方案 Fedora has issued updated packages…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for jackson-databind to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerab…