CVE-2017-12618 Amazon Linux Security Advisory for apr-util: ALAS-2017-929

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 Apache Portable Runtime Utility (APR-util) fails to validate the integrity of SDBM database files used by apr_sdbm*() functions, resulting in a possible out of bound read access. A local user with write access to the database can m…

2017年12月8日 0条评论 1178点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 An out-of-bounds array dereference was found in apr_time_exp_get(). An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.(CVE-2017-12613 ) QID Detection Logic: …

2017年12月8日 0条评论 1245点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 Mozilla Firefox is an open source web browser. Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the pr…

2017年11月30日 0条评论 2428点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 Oracle Tuxedo is an application server for non-Java languages. It provides a bunch of facilities that help customers build and deploy enterprise applications written in C, C++, COBOL, and with the SALT add-on applications written in Pytho…

2017年11月30日 0条评论 2406点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 VMware Workstation is a hosted hypervisor that runs on x64 versions of Windows and Linux operating systems. Multiple vulnerabilities were reported in VMware Workstation and Fusion. A local user on the guest system can trigger a heap overf…

2017年11月30日 0条评论 2216点热度 0人点赞小助手阅读全文

漏洞类别：CGI 漏洞等级：漏洞信息 Webmin is a Web-based interface for system administration of Unix and Linux operating systems. Webmin prior to 1.500 suffers from several critical vulnerabilities Affected Software: Webmin Versions prior to 1.500 QID Detection Logic (Unauth…

2017年11月30日 0条评论 2132点热度 0人点赞小助手阅读全文

漏洞类别：General remote services 漏洞等级：漏洞信息 The following buffer overflow conditions exist in Intel Active Management Technology (AMT): CVE-2017-5711: Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10…

2017年11月30日 0条评论 2169点热度 0人点赞小助手阅读全文

漏洞类别：Database 漏洞等级：漏洞信息 Apache CouchDB is a free open source document oriented database written in the Erlang programming language. This Apache CouchDB update fixes the following vulnerabilities: CVE-2017-12635:Remote Code Execution. CVE-2017-12636:Execution …

2017年11月30日 0条评论 2218点热度 0人点赞小助手阅读全文

漏洞类别：Web server 漏洞等级：漏洞信息 A Remote Code Execution vulnerability has been identified in HP LaserJet Enterprise printers, HP PageWide Enterprise printers, HP LaserJet Managed printers, and HP OfficeJet Enterprise printers. The vulnerability exists due to Insuff…

2017年11月30日 0条评论 2225点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for mxml to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 漏洞危害 This vulnerability can be used to cause a complete denial of service and could render the …

2017年11月30日 0条评论 2092点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for graphicsmagick to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive inform…

2017年11月30日 0条评论 2007点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that OptiPNG incorrectly handled memory. 漏洞危害 A remote attacker could use this issue with a specially crafted image file to cause OptiPNG to crash, resulting in a denial of service, or possibly execute arbitrary code. 解…

2017年11月30日 0条评论 1908点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that XML::LibXML incorrectly handled memory when processing a replaceChild call. 漏洞危害 A remote attacker could possibly use this issue to execute arbitrary code. 解决方案 Refer to Ubuntu advisory USN-3494-1 for affected pack…

2017年11月30日 0条评论 1963点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that Exim incorrectly handled memory in the ESMTP CHUNKING extension. 漏洞危害 A remote attacker could use this issue to cause Exim to crash, resulting in a denial of service, or possibly execute arbitrary code. The default…

2017年11月30日 0条评论 2110点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that LibRaw incorrectly handled photo files. 漏洞危害 If a user or automated system were tricked into processing a specially crafted photo file, a remote attacker could cause applications linked against LibRaw to crash, res…

2017年11月30日 0条评论 2044点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that the ldns-keygen tool incorrectly set permissions on private keys. It was discovered that ldns incorrectly handled memory when processing data. 漏洞危害 A local attacker could possibly use this issue to obtain generated…

2017年11月30日 0条评论 2010点热度 0人点赞小助手阅读全文

漏洞类别：General remote services 漏洞等级：漏洞信息 The following buffer overflow and privilege escalation conditions exist in Intel Management Engine (ME): CVE-2017-5705: Multiple buffer overflows allow attacker with local access to the system to execute arbitrary code. …

2017年11月30日 0条评论 2230点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 Samba is an open-source implementation of the Server Message Block (SMB) protocol. A use-after-free flaw was found in the way samba servers handled certain SMB1 requests. An unauthenticated attacker could send specially-crafted SMB1 requ…

2017年11月30日 0条评论 2044点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 漏洞危害 This vulnerability could be exploited to gain complete access to sensitive in…

2017年11月30日 0条评论 2029点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for samba to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerabili…

2017年11月30日 0条评论 1915点热度 0人点赞小助手阅读全文

2017年11月30日 0条评论 2008点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for liblouis to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain complete access to sensitive information. Malicious users …

2017年11月30日 0条评论 1986点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for gimp to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE…

2017年11月30日 0条评论 1749点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 A vulnerability in macOS High Sierra operating system that allows an attacker with physical access to gain system administrator access without entering a password. The security bug can be triggered via the authentication dialog box in mac…

2017年11月30日 0条评论 1721点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 Apple macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan Not Installed. An update is available to resolve multiple security vulnerabilities. Additional information regarding the update can …

2017年11月30日 0条评论 1657点热度 0人点赞小助手阅读全文

1…55 565758 59…184

CVE-2017-12618 Amazon Linux Security Advisory for apr-util: ALAS-2017-929

CVE-2017-12613 Amazon Linux Security Advisory for apr: ALAS-2017-928

CVE-2017-7826 Red Hat Update for firefox (RHSA-2017:3247)

CVE-2017-10266 Oracle Tuxedo and PeopleSoft Multiple Vulnerabilties

CVE-2017-4934 VMware Workstation and Fusion Multiple Vulnerabilities (VMSA-2017-0018)

CVE-2011-1937 Webmin prior to 1.500 Multiple Vulnerabilities

CVE-2017-5711 Intel Active Management Technology Multiple Remote Code Execution Vulnerabilities

CVE-2017-12635 Apache CouchDB Multiple Vulnerabilities.

CVE-2017-2750 HP Printers Remote Code Execution Vulnerability

CVE-2016-4570 SUSE Enterprise Linux Security Update for mxml (SUSE-SU-2017:3060-1)

CVE-2017-11534 SUSE Enterprise Linux Security Update for GraphicsMagick (SUSE-SU-2017:3056-1)

CVE-2017-1000229 Ubuntu Security Notification for Optipng Vulnerability (USN-3495-1)

CVE-2017-10672 Ubuntu Security Notification for Libxml-libxml-perl Vulnerability (USN-3494-1)

CVE-2017-16943 Ubuntu Security Notification for Exim4 Vulnerability (USN-3493-1)

CVE-2015-3885 Ubuntu Security Notification for Libraw Vulnerabilities (USN-3492-1)

CVE-2014-3209 Ubuntu Security Notification for Ldns Vulnerabilities (USN-3491-1)

CVE-2017-5705 Intel Management Engine Multiple Privilege Escalation And Buffer Overflow Vulnerabilities

CVE-2017-14746 Red Hat Update for samba (RHSA-2017:3260)

CVE-2017-16837 SUSE Enterprise Linux Security Update for tboot (SUSE-SU-2017:3090-1)

CVE-2017-14746 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2017:3086-1)

CVE-2017-14746 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2017:3086-1)

CVE-2014-8184 SUSE Enterprise Linux Security Update for liblouis (SUSE-SU-2017:3078-1)

SUSE Enterprise Linux Security Update for gimp (SUSE-SU-2017:3062-1)

CVE-2017-13872 Apple macOS High Sierra Authentication Bypass Vulnerability (Zero Day)

CVE-2017-13832 Apple macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan Not Installed