漏洞类别：SUSE 漏洞等级： 漏洞信息 Suse has released security update for xerces-c to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnerab…

漏洞类别：CGI 漏洞等级： 漏洞信息 IBM Integrated Management Module (IMM), that provides a service-processor control, monitoring, and an alerting function was detected on the targeted host. 0day

漏洞类别：CGI 漏洞等级： 漏洞信息 MediaWiki is free and open source wiki software developed by the Wikimedia. It's used to power wiki web sites such as Wikipedia, Wiktionary and Commons. These releases fix five security issues in core and one for the extension PdfHandler: (…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 The host is running Ubuntu 15.10. Support for Ubuntu 15.10 ended on July 28, 2016. No further updates, including security updates, are available for Ubuntu 15.10. 漏洞危害 The system is at high risk of being exposed to security vuln…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that HarfBuzz incorrectly handled memory. It was discovered that HarfBuzz incorrectly handled certain length checks. 漏洞危害 A remote attacker could use this issue to cause HarfBuzz to crash, resulting in a denial of servi…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that Libidn incorrectly handled invalid UTF-8 characters. It was discovered that Libidn incorrectly handled certain input. 漏洞危害 A remote attacker could use this issue to cause Libidn to crash, resulting in a denial of s…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that Eye of GNOME incorrectly handled certain invalid UTF-8 strings. 漏洞危害 If a user were tricked into opening a specially-crafted image, a remote attacker could use this issue to cause Eye of GNOME to crash, resulting i…

漏洞类别：Local 漏洞等级： 漏洞信息 Cisco AnyConnect is a VPN Client for multiple platforms. A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileg…

漏洞类别：Local 漏洞等级： 漏洞信息 ownCloud is a suite of client-server software for creating file hosting services and using them. ownCloud Windows Client is vulnerable to local code injection attack wherein a malicious local user could load a specially crafted DLL to inj…

漏洞类别：SUSE 漏洞等级： 漏洞信息 Suse has released security update for the linux kernel to fix the vulnerabilities. Affected Products: openSUSE 13.1 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Upgrade to the latest packages which contain a …

漏洞类别：Hardware 漏洞等级： 漏洞信息 FortiGate is a Firewall/VPN appliance, manufactured by Fortinet, that runs on proprietary hardware. The operating system is FortiOS. The vulnerability exists due to an improper parsing of cookie field in HTTP requests. An attacker coul…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * A flaw was found in the Linux kernel's keyring handling code, where in key_reject_and_link() an uninitialised variable would eventu…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-p…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * A flaw was found in the way certain interfaces of the Linux kernel's Infiniband subsystem used write() as bi-directional ioctl() re…

漏洞类别：CGI 漏洞等级： 漏洞信息 Centreon is the system and network monitoring software. A remote command execution vulnerability has been identified in Centreon Web. Affected Versions: Centreon Web version 2.5.3 and earlier 漏洞危害 A remote attacker could exploit this vulner…

漏洞类别：CGI 漏洞等级： 漏洞信息 phpMyAdmin is a free software tool written in PHP and intended to handle the administration of MySQL over the Internet. PMASA-2016-27: The vulnerability exists because the affected versions fail to handle null termination of the preg_replac…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that Fontconfig incorrectly handled cache files. 漏洞危害 A local attacker could possibly use this issue with a specially crafted cache file to elevate privileges. 解决方案 Refer to Ubuntu advisory USN-3063-1 for affected packa…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. A vulnerability was discovered in the OpenJDK JRE related to data integrity. Multiple vulnerabilities were d…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for libgcrypt20 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3650-1 to address this issue and obtain fur…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for gnupg to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3649-1 to address this issue and obtain further d…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for wireshark to fix the vulnerabilities. 漏洞危害 Successful exploitation allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet. 解决方案 R…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for icedove to fix the vulnerabilities. 漏洞危害 Successful exploitation allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for postgresql-9.4 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3646-1 to address this issue and obtain …

漏洞类别：CGI 漏洞等级： 漏洞信息 PHP is a general purpose scripting language that is especially suited for web development and can be embedded into HTML. PHP has been reported to be vulnerable to the following issues: - An error exist with the virtual_file_ex function. Spe…

漏洞类别：CGI 漏洞等级： 漏洞信息 A vulnerability in the web interface of Cisco Network Analysis Modules could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system of the affected device with the privileges of the web se…