漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for guile to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 Malicious users could use this vulnerability to chang…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for spice to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerabili…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for libxml2 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerabi…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for gcc48 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for libcap-ng to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain com…

漏洞类别：CGI 漏洞等级： 漏洞信息 LxCenter Kloxo (formerly known as Lxadmin) is a free, opensource web hosting control panel for the Red Hat and CentOS Linux distributions. The vulnerability exists because an implemented /lbin/webcommand.php source file fails to properly sa…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that Nettle incorrectly mitigated certain timing side-channel attacks. 漏洞危害 A remote attacker could possibly use this flaw to recover private keys. 解决方案 Refer to Ubuntu advisory USN-3193-1 for affected packages and patc…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that Squid incorrectly handled processing HTTP conditional requests. It was discovered that Squid incorrectly handled certain HTTP Request headers when using the Collapsed Forwarding feature. 漏洞危害 A remote attacker coul…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. 漏洞危害 If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser secu…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that the asynchronous multibuffer cryptographic daemon (mcryptd) in the Linux kernel did not properly handle being invoked with incompatible algorithms. It was discovered that the ICMP implementation in the Linux kernel…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data. 漏洞危害 A remote attacker could use this to cause a denial of service (system crash). 解决方案 Refer to Ubuntu advisory USN-3188-…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that the SCTP implementation in the Linux kernel improperly handled validation of incoming data. It was discovered that multiple memory leaks existed in the XFS implementation in the Linux kernel. 漏洞危害 A remote attacker…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Red Hat Virtualization Manager is a centralized management platform that allows system administrators to view and manage virtual machines. The Manager provides a comprehensive range of features including search capabilities, resource…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Simple Protocol for Independent Computing Environments (SPICE) is a remote display protocol for virtual environments. SPICE users can access a virtualized desktop or server from the local system or any system with network access to t…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Network Time Protocol (NTP) is used to synchronize a computer's time with another referenced time source. These packages include the ntpd service which continuously adjusts system time and utilities used to query and configure the nt…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for gnome-boxes to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for opensslk to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may be lead to DOS attacks. Attacks against RSA and DSA possible on x86_64 due to a carry propagating bug. 解决方…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for unbreakable enterprise kernel to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation will cause information leakage and denial of se…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for ntp to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation may lead to a denial of service attack. Other attacks also possible. 解决方案…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation may allow a denial of service. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates can be…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for phpmyadmin to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vuln…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for calibre to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnera…

漏洞类别：Local 漏洞等级： 漏洞信息 A BIG-IP virtual server configured with a Client SSL profile that has the non-default Session Tickets option enabled may leak up to 31 bytes of uninitialized memory. The vulnerability exists in the implementation of the TLS SessionTicket …

漏洞类别：Local 漏洞等级： 漏洞信息 Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js is exposed to a root path disclosure vulnerability in send Module. Affected Products: Send module prior to 0.11.1 …

漏洞类别：Database 漏洞等级： 漏洞信息 Oracle released a Critical Patch Update advisory for January 2017 that addresses several security vulnerabilities. The following Oracle database component are affected: - OJVM - RDBMS Security 漏洞危害 An attacker could affect the confiden…