漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for ghostscript to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 Successful exploitation of the vulnerabilities can cause remote code execution and information disclosur…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for zlib to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerabilit…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for zlib to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerabilit…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way the Linux kernel's networking subsystem handled offloaded packets with multiple layers of encapsulation in the GRO (Generic…

漏洞类别：RedHat 等级： 漏洞信息 The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to m…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for gd to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 Sucessful exploitation can lead to denial of service. 解决方案 Fedora has issued updated packages to fix this vulnerability. Updates c…

漏洞类别：Fedora 漏洞等级： 漏洞信息 Fedora has released security update for gstreamer-plugins-good to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash or, potentially, exec…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for pcsc-lite to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerabilities will allow denial of service or potentially privilege escalation. 解决方案 Refer to Debian security advisory DS…

漏洞类别：Amazon Linux 漏洞等级： 漏洞信息 It was discovered that the sudo noexec restriction could have been bypassed if application run via sudo executed system() or popen() C library functions with a user supplied argument. A local user permitted to run such application …

漏洞类别：Amazon Linux 漏洞等级： 漏洞信息 The following security-related issues were resolved: CVE-2016-7426 : Client rate limiting and server responses CVE-2016-7429 : Attack on interface selection CVE-2016-7433 : Broken initial sync calculations regression CVE-2016-9310 …

漏洞类别：Amazon Linux .漏洞等级： 漏洞信息 A flaw was found in the Linux kernel key management subsystem in which a local attacker could crash the kernel or corrupt the stack and additional memory (denial of service) by supplying a specially crafted RSA key. This flaw pani…

漏洞类别：Local 漏洞等级： 漏洞信息 Plone is an open source Content Management System available for multiple platforms. A design vulnerability has been identified in Plone. Further details are not available at the time of this writing. Affected Versions: All supported Plone…

漏洞类别：Local .漏洞等级： 漏洞信息 Puppet is IT automation software that helps system administrators manage infrastructure throughout its lifecycle, from provisioning and configuration to orchestration and reporting. When making REST api calls, the puppet master takes YAM…

漏洞类别：CGI 漏洞等级： 漏洞信息 Resin is a Java Application Server for high traffic sites that require speed and scalability. Resin Application Server is exposed to following vulnerabilities: 1) Resin Application Server is prone to a source code disclosure vulnerability. …

漏洞类别：CGI 漏洞等级： 漏洞信息 Serendipity is a PHP-powered weblog application which gives the user a way to maintain an online diary, weblog or a complete homepage. Serendipity contains the following vulnerabilities: CVE-2016-10082: The include/functions_installer.inc.p…

漏洞类别：CGI 漏洞等级： 漏洞信息 PHP is a general purpose scripting language that is especially suited for web development and can be embedded into HTML. Multiple security-related bugs were fixed in this new release, including CVE-2016-7478, CVE-2016-7479 and CVE-2016-7480…

漏洞类别：RedHat. 漏洞等级： 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format decoding plug-in.…

漏洞类别：RedHat 漏洞等级： 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. Multiple flaws were discovered in GStreamer's FLC/FLI/FLX media file format decoding plug-in. A remote attacker could use these flaws to cau…

漏洞类别：RedHat 漏洞等级： 漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. An integer overflow flaw, leading to a heap-based buffer overflow, was found in GStreamer's VMware VMnc video file format decoding plug-in. …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Ghostscript suite contains utilities for rendering PostScript and PDF documents. It was found that the ghostscript functions getenv, filenameforall and .libfile did not honor the -dSAFER option, usually used when processing untrusted…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Ghostscript suite contains utilities for rendering PostScript and PDF documents. It was found that the ghostscript functions getenv, filenameforall and .libfile did not honor the -dSAFER option, usually used when processing untrusted…

漏洞类别：CGI 漏洞等级： 漏洞信息 Bamboo is a continuous integration and deployment tool that ties automated builds, tests and releases together in a single workflow. Bamboo had a resource that deserialised arbitrary user input without restriction. Attackers can use this vu…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-good to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash or,…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for gstreamer1-plugins-bad-free to fix the vulnerabilities. Affected Products: Oracle Linux 7 漏洞危害 A remote attacker could use these flaws to cause an application using GStreamer to crash…