漏洞类别:AIX 漏洞等级: 漏洞信息 There are two vulnerabilities in BIND that impact AIX. 1. SC BIND is vulnerable to a denial of service, caused by the improper handling of responses containing a DNAME answer in db.c or resolver.c. By sending a recursive response, a remote …
漏洞类别:AIX 漏洞等级: 漏洞信息 There are multiple vulnerabilities in IBM SDK Java Technology Edition Versions 6, 7, 7.1, 8 that are used by AIX. These issues were disclosed as part of the IBM Java SDK updates in October 2016. The following vulnerabilities exists in IBM A…
漏洞类别:AIX 漏洞等级: 漏洞信息 IBM AIX is prone to a privilege escalation vulnerability. IBM AIX could allow a local user to gain root privileges using a specially crafted command within the bellmail client. Affected Versions:- AIX 6.1, 7.1, 7.2 漏洞危害 IBM AIX could allow …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to g…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for dnsmasq to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for ntp to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP2 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for ntp to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could …
漏洞类别:RedHat 漏洞等级: 漏洞信息 Vim (Vi IMproved) is an updated and improved version of the vi editor. A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could e…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Xen is a virtual machine monitor An out of bounds array access issue was found in the Xen virtual machine monitor, built with the QEMU ioport support. It could occur while doing ioport read/write operations, if guest was to supply a 32bi…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. A use-after-free vulnerability was found in the kernels socket recvmmsg subsystem. This may allows remote attackers to corrupt memory and may allow exe…
CVE
CVE-2016-9636 Oracle Enterprise Linux Security Update for gstreamer-plugins-good (ELSA-2016-2975)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer-plugins-good to fix the vulnerabilities. Affected Products: Oracle Linux 6 漏洞危害 Successful exploitation of the vulnerabilities may allow an remote attacker to cause an appli…
CVE
CVE-2016-9445Oracle Enterprise Linux Security Update for gstreamer-plugins-bad-free (ELSA-2016-2974)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 6 漏洞危害 Sucessful exploitation may cause information leakage. 解决方案 To resolve this issue, upgrade…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for thunderbird to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this is…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for vim to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 Successful exploitation may lead to the execution of arbitrary code 解决方案 To resolve this issue, u…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for xen to fix the vulnerabilities. Affected Products: Oracle Linux 5 漏洞危害 A privileged guest user/process could use this flaw to potentially escalate their privileges on a host. 解决方案 To …
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for elsa-2016-2962-1 important: oracle linux 5 kernel to fix the vulnerabilities. Affected Products: Oracle Linux 5 漏洞危害 On successful exploitation it allows remote attackers to corrupt m…
漏洞类别:CentOS 漏洞等级: 漏洞信息 CentOS has released security update for kvm to fix the vulnerabilities. Affected Products: centos 5 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this issue, upgrade to the latest packages which c…
漏洞类别:Local 漏洞等级: 漏洞信息 Design interactive animations with cutting-edge drawing tools and publish them to multiple platforms with Adobe Animate. This update resolves a critical memory corruption vulnerability (CVE-2016-7866). Affected Version Adobe Animate 15.2.…
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe ColdFusion Builder an IDE that can be used to build applications for ColdFusion. Adobe ColdFusion Builder is exposed to a information disclosure vulnerability (CVE-2016-7887). Affected Products: Adobe ColdFusion Builder 2016 Update …
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that shared bind mounts in a mount namespace exponentially added entries without restriction to the Linux kernel's mount table. It was discovered that the KVM implementation for x86/x86_64 in the Linux kernel could dere…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 A use-after-free condition in the TTY implementation in the Linux kernel. It was discovered that the Video For Linux Two (v4l2) implementation in the Linux kernel did not properly handle multiple planes when processing a VIDIOC_DQBUF ioc…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that shared bind mounts in a mount namespace exponentially added entries without restriction to the Linux kernel's mount table. It was discovered that a race condition existed in the procfs environ_read function in the …
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that a race condition existed in the procfs environ_read function in the Linux kernel, leading to an integer underflow. 漏洞危害 A local attacker could use this to expose sensitive information (kernel memory). 解决方案 Refer to…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for php-ssh2 to fix the vulnerabilities. 漏洞危害 If only DSA-3732-1 is installed, it can cause segfaults in php-ssh2. 解决方案 Refer to Debian security advisory DSA 3732-2 to address this issue and obtain fur…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that the ndr_pull_dnsp_nam function in Samba contained an integer overflow. It was discovered that Samba clients always requested a forwardable ticket when using Kerberos authentication. It was discovered that Kerberos …