漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for squid3 to fix the vulnerabilities. 漏洞危害 Successful exploitation can cause leakage of sensitive information. 解决方案 Refer to Debian security advisory DSA 3745-1 to address this issue and obtain furthe…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libxml2 to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerabilities can allow an attacker to cause a denial-of-service against the application or may allow the attacker to execu…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for botan to fix the vulnerability. Affected OS: Fedora 24 Fedora 25 漏洞危害 Successful exploitation may cause an integer overflow. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updat…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation may lead to buffer overflow. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates can be i…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation may lead to buffer overflow. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates can be i…
CVE
CVE-2016-7944 SUSE Enterprise Linux Security Update for xorg-x11-libXfixes (SUSE-SU-2016:3172-1)
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for xorg-x11-libxfixes to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for pcre to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 SUSE …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for xorg-x11-libs to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain…
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This …
漏洞类别:SUSE 漏洞等级: 漏洞信息 Suse has released security update for xen to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can also be used to cause a limited …
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe RoboHelp Server extends the capabilities of Adobe RoboHelp and Adobe FrameMaker. Merge multiple segments of Help content, including responsive HTML5 content, into a unified information system. Host it for anytime, anywhere, any devi…
漏洞类别:Local 漏洞等级: 漏洞信息 Gollum is a simple wiki system built on top of Git. The Precious module in gollum before 4.0.1 allows remote attackers to read arbitrary files by leveraging the lack of a certain temporary-file check. Affected Versions: gollum prior 4.0.1…
漏洞类别:Local 漏洞等级: 漏洞信息 iTunes is a digital media player application for Mac OS and Windows developed by Apple. WebKit in Apple iTunes for Windows is prone to multiple vulnerabilities like Information Disclosure and Arbitrary Code Execution. Affected Versions: A…
漏洞类别:Amazon Linux 漏洞等级: 漏洞信息 A vulnerability was found in vim in how certain modeline options were treated. An attacker could craft a file that, when opened in vim with modelines enabled, could execute arbitrary commands with privileges of the user running vim…
CVE
CVE-2016-3081 Apache Struts Dynamic Method Invocation Remote Code Execution Vulnerability (S2-032)
漏洞类别:Web Application 漏洞等级: 漏洞信息 Apache Struts is a framework for building web applications. A vulnerability CVE-2016-3081 exists due to improper handling of malicious expressions by the Apache Struts when Dynamic Method Invocation is enabled. This will allow a…
漏洞类别:Web Application 漏洞等级: 漏洞信息 The Apache Struts web framework is a free open source solution for creating Java web applications. A vulnerability CVE-2013-1966 and CVE-2013-2115 exists due to Invalid handling of "includeParams" attribute, which leads to code …
漏洞类别:Web Application 漏洞等级: 漏洞信息 The Apache Struts web framework is a free open source solution for creating Java web applications. Apache Struts is prone to multiple remote code execution vulnerabilities CVE-2013-2134 and CVE-2013-2135 due to improper handling…
漏洞类别:Web Application 漏洞等级: 漏洞信息 The Apache Struts web framework is a free open source solution for creating Java web applications. Apache Struts is prone to multiple security vulnerabilities CVE-2013-4310 and CVE-2013-4316. Apache Strut is affected by followin…
漏洞类别:Web Application 漏洞等级: 漏洞信息 The Apache Struts web framework is a free open source solution for creating Java web applications. A vulnerability CVE-2016-4438 exists due to improper handling of malicious expressions by the Apache Struts when using the REST p…
漏洞类别:CGI 漏洞等级: 漏洞信息 WildFly, formerly known as JBoss AS, or simply JBoss, is an application server authored by JBoss, now developed by Red Hat. WildFly is written in Java, and implements the Java Platform, Enterprise Edition (Java EE) specification. It runs on…
CVE
CVE-2016-5563 Oracle Hospitality OPERA 5 Property Services Multiple Vulnerabilities (CPUOCT2016)
漏洞类别:CGI 漏洞等级: 漏洞信息 Oracle Hospitality OPERA Cloud Services is an enterprise platform for hotel operations and distribution. It offers the comprehensive, next-generation capabilities hotels need to enhance guest experiences and improve operating efficiency. Or…
漏洞类别:CentOS 漏洞等级: 漏洞信息 CentOS has released security update for bind97 to fix the vulnerabilities. Affected Products: centos 5 漏洞危害 Successful exploitation allows attacker to service disruption. 解决方案 To resolve this issue, upgrade to the latest packages which c…
漏洞类别:CentOS 漏洞等级: 漏洞信息 CentOS has released security update for bind to fix the vulnerabilities. Affected Products: centos 5 centos 6 centos 7 漏洞危害 Successful exploitation allows attacker to cause service disruption. 解决方案 To resolve this issue, upgrade to the l…
漏洞类别:CentOS 漏洞等级: 漏洞信息 CentOS has released security update for python-twisted-web to fix the vulnerabilities. Affected Products: centos 6 centos 7 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this issue, upgrade to the…
漏洞类别:CentOS 漏洞等级: 漏洞信息 CentOS has released security update for openssl to fix the vulnerabilities. Affected Products: centos 7 centos 6 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this issue, upgrade to the latest pac…