漏洞类别:Local 漏洞等级: 漏洞信息 Plone is an open source Content Management System available for multiple platforms. A design vulnerability has been identified in Plone. Further details are not available at the time of this writing. Affected Versions: All supported Plone…
漏洞类别:Local .漏洞等级: 漏洞信息 Puppet is IT automation software that helps system administrators manage infrastructure throughout its lifecycle, from provisioning and configuration to orchestration and reporting. When making REST api calls, the puppet master takes YAM…
漏洞类别:CGI 漏洞等级: 漏洞信息 Resin is a Java Application Server for high traffic sites that require speed and scalability. Resin Application Server is exposed to following vulnerabilities: 1) Resin Application Server is prone to a source code disclosure vulnerability. …
漏洞类别:CGI 漏洞等级: 漏洞信息 Serendipity is a PHP-powered weblog application which gives the user a way to maintain an online diary, weblog or a complete homepage. Serendipity contains the following vulnerabilities: CVE-2016-10082: The include/functions_installer.inc.p…
漏洞类别:CGI 漏洞等级: 漏洞信息 PHP is a general purpose scripting language that is especially suited for web development and can be embedded into HTML. Multiple security-related bugs were fixed in this new release, including CVE-2016-7478, CVE-2016-7479 and CVE-2016-7480…
漏洞类别:RedHat. 漏洞等级: 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format decoding plug-in.…
漏洞类别:RedHat 漏洞等级: 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. Multiple flaws were discovered in GStreamer's FLC/FLI/FLX media file format decoding plug-in. A remote attacker could use these flaws to cau…
漏洞类别:RedHat 漏洞等级: 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format decoding plug-in. …
漏洞类别:RedHat 漏洞等级: 漏洞信息 The Ghostscript suite contains utilities for rendering PostScript and PDF documents. It was found that the ghostscript functions getenv, filenameforall and .libfile did not honor the -dSAFER option, usually used when processing untrusted…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The Ghostscript suite contains utilities for rendering PostScript and PDF documents. It was found that the ghostscript functions getenv, filenameforall and .libfile did not honor the -dSAFER option, usually used when processing untrusted…
漏洞类别:CGI 漏洞等级: 漏洞信息 Bamboo is a continuous integration and deployment tool that ties automated builds, tests and releases together in a single workflow. Bamboo had a resource that deserialised arbitrary user input without restriction. Attackers can use this vu…
CVE
CVE-2016-9445 Oracle Enterprise Linux Security Update for gstreamer1-plugins-bad-free (ELSA-2017-0021)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash…
CVE
CVE-2016-9636 Oracle Enterprise Linux Security Update for gstreamer1-plugins-good (ELSA-2017-0020)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-good to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash or,…
CVE
CVE-2016-9445 Oracle Enterprise Linux Security Update for gstreamer1-plugins-bad-free (ELSA-2017-0021)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash…
CVE
CVE-2016-9636 Oracle Enterprise Linux Security Update for gstreamer1-plugins-good (ELSA-2017-0020)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-good to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash or,…
CVE
CVE-2016-9445 Oracle Enterprise Linux Security Update for gstreamer-plugins-bad-free (ELSA-2017-0018)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash …
CVE
CVE-2016-9636 Oracle Enterprise Linux Security Update for gstreamer-plugins-good (ELSA-2017-0019)
漏洞类别:OEL 漏洞等级: 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer-plugins-good to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash or, …
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libvncserver to fix the vulnerabilities. 漏洞危害 Successful exploitation may allow an attacker to perform a denial of service attack or execute arbitrary code on the client. 解决方案 Refer to Debian secur…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for libgd2 to fix the vulnerabilities. 漏洞危害 The vulnerability can be used to cause a denial-of-service. 解决方案 Refer to Debian security advisory DSA 3751-1 to address this issue and obtain further detail…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for php5 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 漏洞危害 This vulnerability could be exploite…
CVE
CVE-2016-9445 SUSE Enterprise Linux Security Update for gstreamer-0_10-plugins-bad (SUSE-SU-2017:0028-1)
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for gstreamer-0_10-plugins-bad to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerability could be exp…
CVE
CVE-2016-9445 SUSE Enterprise Linux Security Update for gstreamer-0_10-plugins-bad (SUSE-SU-2017:0027-1)
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for gstreamer-0_10-plugins-bad to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerability could be exp…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for perl-dbd-mysql to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gai…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for php7 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 漏洞危害 This vulnerability could be exploite…
漏洞类别:General remote services 漏洞等级: 漏洞信息 The Cisco Mobility Services Engine is a platform that uses Wi-Fi to increase visibility into the network, deploy location-based mobile services, and strengthen security. The vulnerability is due to a user account that ha…