Piwigo SQL注入漏洞

Piwigo is a Web-based open source photo gallery software. The software includes features such as image management, image categorization and permission management. A security vulnerability exists in Piwigo version 13.6.0, which stems from a problem with the configuration file functionality and can...

Linux Kernel 'perf'工具本地特权提升漏洞

Bugtraq ID: 49140 CVE ID：CVE-2011-2905 Linux是一款开放源代码的操作系统。 perf工具从当前目录装载配置文件存在缺陷，构建用户在包含恶意配置文件中的目录中执行perf工具，可提升特权。 Linux kernel 2.6.x 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息： http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=aba8d056078e47350d85b06a9cabd5afcc4b72ea...