漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can be used to cause a complet…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for ghostscript to fix the vulnerabilities. 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决方案 Refer to Debian sec…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for tiff to fix the vulnerabilities. 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决方案 Refer to Debian security a…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for tomcat7 to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决方案 Refer to Debian security advisory DSA 3842-1 to address this iss…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libxstream-java to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability may allow attackers to cause Denial of Service attacks. 解决方案 Refer to Debian security advisory DSA 3841…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for mysql-connector-java to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to cha…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for freetype to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change partial …
漏洞类别:RedHat 漏洞等级: 漏洞信息 The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin liste…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mozilla Thunderbird is a standalone mail and newsgroup client. Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitr…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named ex…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for thunderbird to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Ma…
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for bind to fix the vulnerabilities. Affected Products: Oracle Linux 6 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this issue, upgrade to the la…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possi…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support; the issue could occ…
漏洞类别:RedHat 漏洞等级: 漏洞信息 JasPer is an implementation of Part 1 of the JPEG 2000 image compression standard. Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, p…
漏洞类别:General remote services 漏洞等级: 漏洞信息 A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, …
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for flash-player to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerability could be exploited to gain complete access to sensitive information. Malicious u…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for libsndfile to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can also be used to cause a l…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for tomcat to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP2 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users cou…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for botan to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 漏洞危害 This vulnerability could be exploit…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for samba to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial…
CVE
CVE-2017-6615 Cisco IOS XE Software Simple Network Management Protocol Subsystem Denial of Service Vulnerability (cisco-sa-20170419-ios-xe-snmp)
漏洞类别:Cisco 漏洞等级: 漏洞信息 A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a race con…
漏洞类别:Local 漏洞等级: 漏洞信息 IBM WebSphere Application Server is designed to facilitate the creation of various enterprise Web applications. IBM WebSphere Application Server is vulnerable to a HTTP response splitting attack. This can be exploited by sending a special…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that rtmpdump incorrectly handled certain malformed streams. 漏洞危害 If a user were tricked into processing a specially crafted stream, a remote attacker could cause rtmpdump to crash, resulting in a denial of service, or …
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that FreeType did not correctly handle certain malformed font files. 漏洞危害 If a user were tricked into using a specially crafted font file, a remote attacker could cause FreeType to crash, resulting in a denial of servic…