Linux 当前厂商共 237 篇文章

发布日期 漏洞标题 等级 厂商
2017-11-08 Linux Kernel 4.13 (Ubuntu 17.10) – 'waitid()' SMEP/SMAP Privilege Escalation
2017-10-27 Linux Kernel 4.14.0-rc4+ – 'waitid()' Privilege Escalation
2017-10-19 Xen – Unbounded Recursion in Pagetable De-typing
2017-10-18 Linux Kernel – 'AF_PACKET' Use-After-Free
2017-10-18 3CX Phone System 15.5.3554.1 – Directory Traversal
2017-10-18 shadowsocks-libev 3.1.0 – Command Execution
2017-10-18 Shadowsocks – Log File Command Execution
2017-10-17 Trend Micro Data Loss Prevention Virtual Appliance 5.2 – Path Traversal
2017-10-12 binutils 2.29.51.20170921 – 'read_1_byte' Heap-Based Buffer Overflow
2017-10-04 UCOPIA Wireless Appliance < 5.1 (Captive Portal) – Unauthenticated Root Remote Code Execution
2017-10-03 UCOPIA Wireless Appliance < 5.1.8 – Privilege Escalation
2017-10-03 Qmail SMTP – Bash Environment Variable Injection (Metasploit)
2017-10-03 UCOPIA Wireless Appliance < 5.1.8 – Restricted Shell Escape
2017-10-03 Linux Kernel < 4.14.rc3 – Local Denial of Service
2017-09-28 Tiny HTTPd 0.1.0 – Directory Traversal
2017-09-26 Apache < 2.2.34 / < 2.4.27 – HTTP OPTIONS Memory Leak
2017-09-26 DenyAll WAF < 6.3.0 – Remote Code Execution (Metasploit)
2017-09-26 Linux Kernel < 4.13.1 – BlueTooth Buffer Overflow (PoC)
2017-09-26 Supervisor 3.0a1 – 3.3.2 – XML-RPC Authenticated Remote Code Execution (Metasploit)
2017-09-26 tcprewrite – Heap-Based Buffer Overflow
2017-09-14 Alienvault OSSIM av-centerd Util.pm sync_rserver – Command Execution (Metasploit)
2017-09-14 Alienvault OSSIM av-centerd 4.7.0 – 'get_log_line' Command Injection (Metasploit)
2017-09-08 Apache Struts 2.5 < 2.5.12 – REST Plugin XStream Remote Code Execution
2017-09-07 Tor – Linux Sandbox Breakout via X11
2017-09-05 RubyGems < 2.6.13 – Arbitrary File Overwrite