This page lists our recent security notices and a variety of resources from vendors, researchers, and security services. Check back often for updates and tips from the ChinaNetCloud Security Team.

Ghost gethostbyname() bug (CVE-2015-0235)

As some of you may know, a new security bug has been found with the DNS part of Linux that affects most systems.  This is being called the Ghost bug.

POODLE SSL Bug (CVE-2014-3566)

As some of you may know, a new security bug has been found with SSLv3 which is being called ‘POODLE.’  Note this is the fourth major security issue this month and we expect more in the future as more researchers focus on the…

Xen Cloud Bug (CVE-2014-7188 / XSA-108)

A new Internet bug has become public today, this one affecting clouds, and SEPARATE from the recent Shell Shock bash bug.  This one is the reason that Amazon…

Shell Shock Bug in BASH System on Servers (CVE-2014-6271 and CVE-2014-7169)

You’ve probably heard about the critical new bug found this week in Linux servers, specifically in the bash shell.  This bug has existed for more than 20…