漏洞类别:Local 漏洞等级: 漏洞信息 Google Chrome is a web browser for multiple platforms developed by Google. This Google Chrome update fixes the following vulnerabilities: A remote user can create specially crafted content that, when loaded by the target user, will execut…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that Dovecot incorrectly handled some usernames. 漏洞危害 An attacker could possibly use this issue to cause Dovecot to hang or crash, resulting in a denial of service. 解决方案 Refer to Ubuntu advisory USN-3258-1 for affected …
漏洞类别:RedHat 漏洞等级: 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. A race condition flaw was found in the N_HLDC Linux kernel driver when accessing n_hdlc.tbuf list that can lead to double free. A local, unprivileged u…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or di…
CVE
CVE-2017-1274 IBM Domino IMAP EXAMINE Buffer Overflow Vulnerability - (swg22002280) Shadow Broker - (EMPHASISMINE)
漏洞类别:Local 漏洞等级: 漏洞信息 IBM Domino (formerly IBM Lotus Domino) is an advanced platform for hosting social business applications. IBM Domino is vulnerable to a IMAP EXAMINE command stack buffer overflow vulnerability which can allow authenticated attackers to exe…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A denial of service flaw was found in the way BIND handled a query response containing CNAME or DNAME resource records in an unusual order. A remote attacker could use this flaw to make named exit unexpectedly with an assertion fai…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 An out-of-bounds write flaw was found in the way NSS performed certain Base64-decoding operations. An attacker could use this flaw to create a specially crafted certificate which, when parsed by NSS, could cause it to crash or exec…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Remote crash via crafted LDAP messages: An invalid pointer dereference flaw was found in the way 389-ds-base handled LDAP bind requests. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially c…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 Sending SIGKILL to other processes with root privileges via su: A race condition was found in the way su handled the management of child processes. A local authenticated attacker could use this flaw to kill other processes with roo…
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe ColdFusion is an application for developing Web sites. Adobe has released security hotfixes for ColdFusion versions 10, 11 and the 2016 release. These hotfixes resolve an input validation issue that could be used in reflected XSS (c…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for unbreakable enterprise kernel to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation of the vulnerabilities may allow privilege esca…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for ruby2.1 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 SU…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for tigervnc to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerability can also be used to cause a limited denial of se…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for tigervnc to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerability can also be used to cause a limited denial of se…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for minicom to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP2 SUSE Linux Enterprise Desktop 12-SP1 …
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for xen to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain complete …
漏洞类别:RedHat 漏洞等级: 漏洞信息 Oracle Java SE version 6 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Developmen…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Oracle Java SE version 8 includes the Oracle Java Runtime Environment and the Oracle Java Software Development Kit. This update fixes multiple vulnerabilities in the Oracle Java Runtime Environment and the Oracle Java Software Developmen…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possi…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possi…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Firefox is an open source web browser. Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the pr…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. A denial of service flaw was found in the way BIND handled a query response containing CNAME or DNAME resource records in an unusual…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Firefox is an open source web browser. Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the pr…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for unbreakable enterprise kernel to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 This vulnerability could be exploited to gain complete access to sensit…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for unbreakable enterprise kernel to fix the vulnerabilities. Affected Products: Oracle Linux 5 Oracle Linux 6 漏洞危害 This vulnerability could be exploited to gain complete access to sensit…