Amazon Linux Security Advisory for aws-cfn-bootstrap: ALAS-2017-866

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 A vulnerability was reported in the CloudFormation bootstrap tools, different from the one in CVE-2017-9450 , where default behavior in the handling of cfn-init metadata can provide escalated privileges to an attacker with local ac…

2017年8月13日 0条评论 2306点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 Out-of-bounds read in fr_dhcp_decode_options(): An out-of-bounds read flaw was found in the way FreeRADIUS server handles decoding of DHCP packets. A remote attacker could use this flaw to crash the FreeRADIUS server by sending a s…

2017年8月13日 0条评论 1524点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 possible OP-TEE Bleichenbacher attack: The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which …

2017年8月13日 0条评论 1538点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 ap_find_token() buffer overread: A buffer over-read flaw was found in the httpd's ap_find_token() function. A remote attacker could use this flaw to cause httpd child process to crash via a specially crafted HTTP request. (CVE-2017…

2017年8月13日 0条评论 1470点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 Security constrained bypass in error page mechanism: A vulnerability was discovered in the error page mechanism in Tomcat's DefaultServlet implementation. A crafted HTTP request could cause undesired side effects, possibly includin…

2017年8月13日 0条评论 1315点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for nasm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Mal…

2017年8月13日 0条评论 1320点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for nasm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 漏洞危害 This vulnerability could be exploite…

2017年8月13日 0条评论 1251点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This …

2017年8月13日 0条评论 1281点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for libzypp, zypper to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This v…

2017年8月13日 0条评论 1344点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for mariadb to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP3 SU…

2017年8月13日 0条评论 1473点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can be used to cause a limited…

2017年8月13日 0条评论 1262点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for systemd to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Desktop 12-SP3 漏洞危害 This vulnerabi…

2017年8月13日 0条评论 1141点热度 0人点赞小助手阅读全文

漏洞类别：Debian 漏洞等级：漏洞信息 Debian has released security update for varnish to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability will lead to a Denial of Service. 解决方案 Refer to Debian security advisory DSA 3924-1 to address this issue and o…

2017年8月13日 0条评论 1224点热度 0人点赞小助手阅读全文

漏洞类别：Debian 漏洞等级：漏洞信息 Debian has released security update for freerdp to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability will lead to a malicious remote server or a man-in-the-middle to either cause a DoS by forcibly terminating the…

2017年8月13日 0条评论 1184点热度 0人点赞小助手阅读全文

漏洞类别：Debian 漏洞等级：漏洞信息 Debian has released security update for mysql-5.5 to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3922-1 to address this issue and obtain furth…

2017年8月13日 0条评论 1227点热度 0人点赞小助手阅读全文

漏洞类别：Debian 漏洞等级：漏洞信息 Debian has released security update for enigmail to fix the vulnerabilities. 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Refer to Debian security advisory DSA 3921-1 to address this issue and obtain furthe…

2017年8月13日 0条评论 1200点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 GStreamer is a streaming media framework based on graphs of filters which operate on media data. Multiple flaws were found in gstreamer1, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-bad-free packages. An atta…

2017年8月13日 0条评论 1398点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 Git is a distributed revision control system with a decentralized architecture. It was found that the git-prompt.sh script shipped with git failed to correctly handle branch names containing special characters. A specially crafted git re…

2017年8月13日 0条评论 1391点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine archi…

2017年8月13日 0条评论 1383点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 PostgreSQL is an advanced object-relational database management system (DBMS). It was found that some selectivity estimation functions did not check user privileges before providing information from pg_statistic, possibly leaking informa…

2017年8月13日 0条评论 1232点热度 0人点赞小助手阅读全文

漏洞类别：RedHat 漏洞等级：漏洞信息 The bash packages provide Bash (Bourne-again shell), which is the default shell for Red Hat Enterprise Linux. An arbitrary command injection flaw was found in the way bash processed the hostname value. A malicious DHCP server could use t…

2017年8月13日 0条评论 1143点热度 0人点赞小助手阅读全文

漏洞类别：Fedora 漏洞等级：漏洞信息 Fedora has released security update for moodle to fix the vulnerability. Affected OS: Fedora 25 Fedora 24 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决方案 Fedora has issued updated packages…

2017年8月13日 0条评论 1117点热度 0人点赞小助手阅读全文

漏洞类别：Fedora 漏洞等级：漏洞信息 Fedora has released security update for jackson-databind to fix the vulnerability. Affected OS: Fedora 24 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerab…

2017年8月13日 0条评论 1213点热度 0人点赞小助手阅读全文

漏洞类别：Fedora 漏洞等级：漏洞信息 Fedora has released security update for mingw-c-ares to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决方案 Fedora has issued updated packages to …

2017年8月13日 0条评论 1480点热度 0人点赞小助手阅读全文

漏洞类别：Fedora 漏洞等级：漏洞信息 Fedora has released security update for seamonkey to fix the vulnerability. Affected OS: Fedora 25 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. …

2017年8月13日 0条评论 2517点热度 0人点赞小助手阅读全文

1…958 959960961 962…1085

Amazon Linux Security Advisory for aws-cfn-bootstrap: ALAS-2017-866

CVE-2017-10982 Amazon Linux Security Advisory for freeradius: ALAS-2017-865

CVE-2016-6129 Amazon Linux Security Advisory for libtommath,libtomcrypt: ALAS-2017-864

CVE-2017-7668 Amazon Linux Security Advisory for httpd24: ALAS-2017-863

CVE-2017-5664 Amazon Linux Security Advisory for tomcat8: ALAS-2017-862

CVE-2017-10686 SUSE Enterprise Linux Security Update for nasm (SUSE-SU-2017:2045-1)

CVE-2017-10686 SUSE Enterprise Linux Security Update for nasm (SUSE-SU-2017:2044-1)

CVE-2017-7533 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2017:2041-1)

CVE-2017-7435 SUSE Enterprise Linux Security Update for libzypp, zypper (SUSE-SU-2017:2040-1)

CVE-2017-3308 SUSE Enterprise Linux Security Update for mariadb (SUSE-SU-2017:2035-1)

CVE-2017-11406 SUSE Enterprise Linux Security Update for wireshark (SUSE-SU-2017:2032-1)

CVE-2017-9217 SUSE Enterprise Linux Security Update for systemd (SUSE-SU-2017:2031-1)

Debian Security Update for varnish (DSA 3924-1)

CVE-2017-2834 Debian Security Update for freerdp (DSA 3923-1)

CVE-2017-3635 Debian Security Update for mysql-5.5 (DSA 3922-1)

Debian Security Update for enigmail (DSA 3921-1)

CVE-2016-10198 Red Hat Update for GStreamer (RHSA-2017:2060)

CVE-2014-9938 Red Hat Update for git (RHSA-2017:2004)

CVE-2016-10207 Red Hat Update for tigervnc and fltk (RHSA-2017:2000)

CVE-2017-7484 Red Hat Update for postgresql (RHSA-2017:1983)

CVE-2016-0634 Red Hat Update for bash (RHSA-2017:1931)

CVE-2017-2642 Fedora Security Update for moodle (FEDORA-2017-60410804eb)

CVE-2017-7525 Fedora Security Update for jackson-databind (FEDORA-2017-8df9efed5f)

CVE-2017-1000381 Fedora Security Update for mingw-c-ares (FEDORA-2017-05254795cf)

Fedora Security Update for seamonkey (FEDORA-2017-cd5d8cac23)