CVE-2018-1000802 Fedora Security Update for python2 (FEDORA-2018-c3a5b2029a)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for python2 to fix the vulnerability.

Affected OS:
Fedora 28
Fedora 27

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 28 Update
Fedora 27 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-c3a5b2029a: Fedora 28

FEDORA-2018-c3a5b2029a: Fedora 27

0daybank

CVE-2018-14645 Fedora Security Update for haproxy (FEDORA-2018-381ab64b59)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for haproxy to fix the vulnerability.

Affected OS:
Fedora 28

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 28 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-381ab64b59: Fedora 28

0daybank

CVE-2018-17175 Fedora Security Update for python-marshmallow (FEDORA-2018-cc9adc4808)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for python-marshmallow to fix the vulnerability.

Affected OS:
Fedora 27
Fedora 28

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 27 Update
Fedora 28 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-cc9adc4808: Fedora 27

FEDORA-2018-cc9adc4808: Fedora 28

0daybank

CVE-2017-15705 Fedora Security Update for spamassassin (FEDORA-2018-6ed251c42b)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for spamassassin to fix the vulnerability.

Affected OS:
Fedora 27

漏洞危害

This vulnerability could be exploited to gain complete access to sensitive information. Malicious users could also use this vulnerability to change all the contents or configuration on the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 27 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-6ed251c42b: Fedora 27

0daybank

Fedora Security Update for php-horde-horde (FEDORA-2018-1de045298c)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for php-horde-horde to fix the vulnerability.

Affected OS:
Fedora 28
Fedora 27

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 28 Update
Fedora 27 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-1de045298c: Fedora 28

FEDORA-2018-1de045298c: Fedora 27

0daybank

CVE-2018-1000810 Fedora Security Update for rust (FEDORA-2018-0071ad34f4)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for rust to fix the vulnerability.

Affected OS:
Fedora 27
Fedora 28

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 27 Update
Fedora 28 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-0071ad34f4: Fedora 27

FEDORA-2018-0071ad34f4: Fedora 28

0daybank

Fedora Security Update for php-horde-Horde-Core (FEDORA-2018-1f64819623)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for php-horde-horde-core to fix the vulnerability.

Affected OS:
Fedora 28
Fedora 27

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 28 Update
Fedora 27 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-1f64819623: Fedora 28

FEDORA-2018-1f64819623: Fedora 27

0daybank

CVE-2015-7746 NetApp Data ONTAP Authentication Bypass Vulnerability (NTAP-20151112-0001)

漏洞类别:General remote services

漏洞等级: 

漏洞信息

NetApp Data ONTAP is a data management software which allows unifying storage infrastructures across flash, disk and cloud.

NetApp Data ONTAP operating in 7-Mode allows unauthorized information disclosure or modification on volumes that have ".UTF-8" appended to the volume language.

Affected Versions:
NetApp Data ONTAP versions prior to 8.2.4, when operating in 7-Mode

QID Detection Logic:
This QID gets vulnerable version of NetApp ONTAP either via HTTP Banner or SNMP

NOTE:This vulnerability affects devices that are operating in 7-Mode and have ".UTF-8" appended to the volume language.

漏洞危害

An unauthenticated, remote attacker could exploit this vulnerability to retrieve sensitive information or modify volumes.

解决方案

Customers are advised to refer to NTAP-20151112-0001 for more information about patching this vulnerability.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

NTAP-20151112-0001

0daybank

CVE-2018-0737 Fedora Security Update for openssli (FEDORA-2018-520e4c5b4e)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for openssli to fix the vulnerability.

Affected OS:
Fedora 27
Fedora 28

漏洞危害

This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 27 Update
Fedora 28 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-520e4c5b4e: Fedora 27

FEDORA-2018-520e4c5b4e: Fedora 28

0daybank

Fedora Security Update for zchunk (FEDORA-2018-6a92b4f75c)

漏洞类别:Fedora

漏洞等级: 

漏洞信息

Fedora has released security update for zchunk to fix the vulnerability.

Affected OS:
Fedora 28
Fedora 27

漏洞危害

Successful exploitation allows attacker to compromise the system.

解决方案

Fedora has issued updated packages to fix this vulnerability.

For more information about the vulnerability and obtaining patches, refer to the following Fedora security advisories:
Fedora 28 Update
Fedora 27 Update

Patch:
Following are links for downloading patches to fix the vulnerabilities:

FEDORA-2018-6a92b4f75c: Fedora 28

FEDORA-2018-6a92b4f75c: Fedora 27

0daybank