漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for tar to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3702-1 to address this issue and obtain further det…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for nginx to fix the vulnerabilities. 漏洞危害 A remote attacker could possibly use this issue to obtain root privileges. 解决方案 Refer to Debian security advisory DSA 3701-1 to address this issue and obtain …

漏洞类别：File Transfer Protocol 漏洞等级： 漏洞信息 ProFTPD is an open source FTP server compatible with Unix-like systems and Windows (via Cygwin). It is among one of the most popular FTP servers used today for Unix-like systems. Diffie Hellman is an algorithm used to der…

漏洞类别：Local 漏洞等级： 漏洞信息 RubyGems is a package manager for the Ruby programming language that provides a standard format for distributing Ruby programs and libraries, a tool designed to easily manage the installation of gems, and a server for distributing them. T…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 11.2.202.644. Security Fix(es): * This update fixes multiple vulnerabilities in Adobe Fla…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure. Security Fix(es): * An authorization flaw w…

漏洞类别：Cisco 漏洞等级： 漏洞信息 A vulnerability in the implementation of the DHCPv4 relay agent and smart relay agent in Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerab…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The libgcrypt library provides general-purpose implementations of various cryptographic algorithms. Security Fix(es): * A design flaw was found in the libgcrypt PRNG (Pseudo-Random Number Generator). An attacker able to obtain the first …

漏洞类别：RedHat 漏洞等级： 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 54.0.2840.90. Security Fix(es): * A flaw was found in the processing of malformed web content. A web page containing malicious co…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix(es): * It was discovered that the Hotspot component of OpenJDK did not properly check arguments …

漏洞类别：RedHat 漏洞等级： 漏洞信息 Docker is an open-source engine that automates the deployment of any application as a lightweight, portable, self-sufficient container that will run virtually anywhere. It was found that Docker would launch containers under the specified…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for v…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Pacemaker cluster resource manager is a collection of technologies working together to provide data integrity and the ability to maintain application availability in the event of a failure. Security Fix(es): * An authorization flaw w…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The powerpc-utils-python packages provide Python-based utilities for maintaining and servicing PowerPC systems. Security Fix(es): * It was found that the amsvis command of the powerpc-utils-python package did not verify unpickled data be…

漏洞类别：Cisco 漏洞等级： 漏洞信息 A vulnerability in the local Certificate Authority (CA) feature of Cisco ASA Software could allow an unauthenticated, remote attacker to cause a reload of the affected system. The vulnerability is due to improper handling of crafted packe…

漏洞类别：RedHat 漏洞等级： 漏洞信息 PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a newer upstream version: postgresql (9.2.18). Security Fix(es): * A flaw was found in the way PostgreSQL server …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Security Fix(es): * It was f…

漏洞类别：RedHat 漏洞等级： 漏洞信息 RESTEasy contains a JBoss project that provides frameworks to help build RESTful Web Services and RESTful Java applications. It is a fully certified and portable implementation of the JAX-RS specification. Security Fix(es): * It was disc…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The mod_nss module provides strong cryptography for the Apache HTTP Server via the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, using the Network Security Services (NSS) security library. The following package…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Incorrect boundary checks were found in the way squid handled headers in HTTP responses, which could lead to an assertion fa…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Fontconfig is designed to locate fonts within the system and select them according to requirements specified by applications. Security Fix(es): * It was found that cache files were insufficiently validated in fontconfig. A local attacker…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages (JSP) technologies. The following packages have been upgraded to a newer upstream version: tomcat (7.0.69). (BZ#1287928) Security Fix(es): * A CSRF flaw was f…

漏洞类别：Local 漏洞等级： 漏洞信息 Apple Xcode is a development application for Macintosh OS X. A vulnerable version of Xcode was found on the target host. The update resolves the following issues. - An attacker may be able to bypass access restrictions through the Apache …

漏洞类别：Debian漏洞等级： 漏洞信息 Debian has released security update for libxslt to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service via a crafted web site. 解决方案 Refer to Debian security …