漏洞类别：RedHat 漏洞等级： 漏洞信息 The libgcrypt library provides general-purpose implementations of various cryptographic algorithms. Security Fix(es): * A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number Generator). An attacker able to obtain the first …

漏洞类别：RedHat 漏洞等级： 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 54.0.2840.90. Security Fix(es): * A flaw was found in the processing of malformed web content. A web page containing malicious co…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix(es): * It was discovered that the Hotspot component of OpenJDK did not properly check arguments …

漏洞类别：RedHat 漏洞等级： 漏洞信息 Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere. It was found that Docker would launch containers under the specified…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for v…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure. Security Fix(es): * An authorization flaw w…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The powerpc-utils-python packages provide Python-based utilities for maintaining and servicing PowerPC systems. Security Fix(es): * It was found that the amsvis command of the powerpc-utils-python package did not verify unpickled data be…

漏洞类别：Cisco 漏洞等级： 漏洞信息 A vulnerability in the local Certificate Authority (CA) feature of Cisco ASA Software could allow an unauthenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to improper handling of crafted packe…

漏洞类别：RedHat 漏洞等级： 漏洞信息 PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a newer upstream version: postgresql (9.2.18). Security Fix(es): * A flaw was found in the way PostgreSQL server …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix(es): * It was f…

漏洞类别：RedHat 漏洞等级： 漏洞信息 RESTEasy contains a JBoss project that provides frameworks to help build RESTful Web Services and RESTful Java applications. It is a fully certified and portable implementation of the JAX-RS specification. Security Fix(es): * It was disc…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, using the Network Security Services (NSS) security library. The following package…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Incorrect boundary checks were found in the way squid handled headers in HTTP responses, which could lead to an assertion fa…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Fontconfig is designed to locate fonts within the system and select them according to requirements specified by applications. Security Fix(es): * It was found that cache files were insufficiently validated in fontconfig. A local attacker…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. The following packages have been upgraded to a newer upstream version: tomcat (7.0.69). (BZ#1287928) Security Fix(es): * A CSRF flaw was f…

漏洞类别：Local 漏洞等级： 漏洞信息 Apple Xcode is a development application for Macintosh OS X. A vulnerable version of Xcode was found on the target host. The update resolves the following issues. - An attacker may be able to bypass access restrictions through the Apache …

漏洞类别：Debian漏洞等级： 漏洞信息 Debian has released security update for libxslt to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service via a crafted web site. 解决方案 Refer to Debian security …

漏洞类别：Debian漏洞等级： 漏洞信息 Debian has released security update for mysql-5.5 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption. 解决方案 Refer to Debian se…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for curl to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change partial cont…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for ghostscript to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3691-2 to address this issue and obtain fur…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for memcached to fix the vulnerabilities. 漏洞危害 A remote attacker could use this issue to cause Memcached to crash, resulting in a denial of service, or possibly execute arbitrary code. 解决方案 Refer to De…

漏洞类别：Debian漏洞等级： 漏洞信息 Debian has released security update for memcached to fix the vulnerabilities. 漏洞危害 A remote attacker could use this issue to cause Memcached to crash, resulting in a denial of service, or possibly execute arbitrary code. 解决方案 Refer to Deb…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for bind9 to fix the vulnerabilities. 漏洞危害 A remote attacker could use this flaw to make an unexpected named exit, with an assertion failure, via a specially crafted DNS response. 解决方案 Refer to Debian …

漏洞类别：Debian漏洞等级： 漏洞信息 Debian has released security update for mat to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3708-1 to address this issue and obtain further deta…