object(app\admin\model\bug\Bug)#19 (37) {
  ["name":protected]=>
  string(3) "bug"
  ["autoWriteTimestamp":protected]=>
  string(7) "integer"
  ["createTime":protected]=>
  string(10) "createtime"
  ["updateTime":protected]=>
  string(10) "updatetime"
  ["deleteTime":protected]=>
  string(10) "deletetime"
  ["append":protected]=>
  array(0) {
  }
  ["connection":protected]=>
  array(0) {
  }
  ["parent":protected]=>
  NULL
  ["query":protected]=>
  NULL
  ["table":protected]=>
  NULL
  ["class":protected]=>
  string(23) "app\admin\model\bug\Bug"
  ["error":protected]=>
  NULL
  ["validate":protected]=>
  NULL
  ["pk":protected]=>
  NULL
  ["field":protected]=>
  array(0) {
  }
  ["except":protected]=>
  array(0) {
  }
  ["disuse":protected]=>
  array(0) {
  }
  ["readonly":protected]=>
  array(0) {
  }
  ["visible":protected]=>
  array(0) {
  }
  ["hidden":protected]=>
  array(0) {
  }
  ["data":protected]=>
  array(24) {
    ["id"]=>
    int(11844)
    ["cve_code"]=>
    string(13) "CVE-2012-4930"
    ["cnnvd"]=>
    string(16) "CNNVD-201209-347"
    ["cncve"]=>
    string(1) "/"
    ["cvss_score"]=>
    float(2.6)
    ["system"]=>
    string(37) "红旗Asianux服务器操作系统 V8"
    ["desc"]=>
    string(405) "Mozilla Firefox、Google Chrome 和其他产品中使用的 SPDY 协议 3 及更早版本可以对压缩数据执行 TLS 加密，而不会正确混淆未加密数据的长度，这使得中间人攻击者可以通过在一系列猜测过程中观察长度差异来获取纯文本 HTTP 标头，其中 HTTP 请求中的字符串可能与 HTTP 标头中的未知字符串匹配，又称“CRIME”攻击。"
    ["date"]=>
    string(10) "2024-11-11"
    ["level"]=>
    string(6) "低危"
    ["package"]=>
    string(8) "firefox;"
    ["repair_version"]=>
    NULL
    ["repair"]=>
    string(35) "软件包升级
dnf update firefox
"
    ["prove"]=>
    NULL
    ["patch"]=>
    NULL
    ["references"]=>
    array(9) {
      [0]=>
      string(69) "http://arstechnica.com/security/2012/09/crime-hijacks-https-sessions/"
      [1]=>
      string(55) "http://www.iacr.org/cryptodb/data/paper.php?pubkey=3091"
      [2]=>
      string(125) "http://threatpost.com/en_us/blogs/crime-attack-uses-compression-ratio-tls-requests-side-channel-hijack-secure-sessions-091312"
      [3]=>
      string(57) "http://www.theregister.co.uk/2012/09/14/crime_tls_attack/"
      [4]=>
      string(43) "http://www.ekoparty.org/2012/thai-duong.php"
      [5]=>
      string(106) "https://community.qualys.com/blogs/securitylabs/2012/09/14/crime-information-leakage-attack-against-ssltls"
      [6]=>
      string(71) "http://isecpartners.com/blog/2012/9/14/details-on-the-crime-attack.html"
      [7]=>
      string(50) "https://bugzilla.redhat.com/show_bug.cgi?id=857737"
      [8]=>
      string(74) "http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00010.html"
    }
    ["createtime"]=>
    int(1733118388)
    ["updatetime"]=>
    int(1733118388)
    ["deletetime"]=>
    NULL
    ["visible"]=>
    int(1)
    ["name"]=>
    NULL
    ["cvss_info"]=>
    NULL
    ["sys_type"]=>
    string(21) "服务器操作系统"
    ["repair_date"]=>
    NULL
    ["cve_name"]=>
    string(58) "Mozilla Firefox/Google Chrome SPDY协议加密问题漏洞"
  }
  ["origin":protected]=>
  array(24) {
    ["id"]=>
    int(11844)
    ["cve_code"]=>
    string(13) "CVE-2012-4930"
    ["cnnvd"]=>
    string(16) "CNNVD-201209-347"
    ["cncve"]=>
    string(1) "/"
    ["cvss_score"]=>
    float(2.6)
    ["system"]=>
    string(37) "红旗Asianux服务器操作系统 V8"
    ["desc"]=>
    string(405) "Mozilla Firefox、Google Chrome 和其他产品中使用的 SPDY 协议 3 及更早版本可以对压缩数据执行 TLS 加密，而不会正确混淆未加密数据的长度，这使得中间人攻击者可以通过在一系列猜测过程中观察长度差异来获取纯文本 HTTP 标头，其中 HTTP 请求中的字符串可能与 HTTP 标头中的未知字符串匹配，又称“CRIME”攻击。"
    ["date"]=>
    string(10) "2024-11-11"
    ["level"]=>
    string(6) "低危"
    ["package"]=>
    string(8) "firefox;"
    ["repair_version"]=>
    NULL
    ["repair"]=>
    string(35) "软件包升级
dnf update firefox
"
    ["prove"]=>
    NULL
    ["patch"]=>
    NULL
    ["references"]=>
    string(658) "http://arstechnica.com/security/2012/09/crime-hijacks-https-sessions/;http://www.iacr.org/cryptodb/data/paper.php?pubkey=3091;http://threatpost.com/en_us/blogs/crime-attack-uses-compression-ratio-tls-requests-side-channel-hijack-secure-sessions-091312;http://www.theregister.co.uk/2012/09/14/crime_tls_attack/;http://www.ekoparty.org/2012/thai-duong.php;https://community.qualys.com/blogs/securitylabs/2012/09/14/crime-information-leakage-attack-against-ssltls;http://isecpartners.com/blog/2012/9/14/details-on-the-crime-attack.html;https://bugzilla.redhat.com/show_bug.cgi?id=857737;http://lists.opensuse.org/opensuse-security-announce/2012-10/msg00010.html"
    ["createtime"]=>
    int(1733118388)
    ["updatetime"]=>
    int(1733118388)
    ["deletetime"]=>
    NULL
    ["visible"]=>
    int(1)
    ["name"]=>
    NULL
    ["cvss_info"]=>
    NULL
    ["sys_type"]=>
    string(21) "服务器操作系统"
    ["repair_date"]=>
    NULL
    ["cve_name"]=>
    string(58) "Mozilla Firefox/Google Chrome SPDY协议加密问题漏洞"
  }
  ["relation":protected]=>
  array(0) {
  }
  ["auto":protected]=>
  array(0) {
  }
  ["insert":protected]=>
  array(0) {
  }
  ["update":protected]=>
  array(0) {
  }
  ["dateFormat":protected]=>
  bool(false)
  ["type":protected]=>
  array(0) {
  }
  ["isUpdate":protected]=>
  bool(true)
  ["replace":protected]=>
  bool(false)
  ["force":protected]=>
  bool(false)
  ["updateWhere":protected]=>
  array(1) {
    ["id"]=>
    array(2) {
      [0]=>
      string(2) "eq"
      [1]=>
      string(5) "11844"
    }
  }
  ["failException":protected]=>
  bool(false)
  ["useGlobalScope":protected]=>
  bool(true)
  ["batchValidate":protected]=>
  bool(false)
  ["resultSetType":protected]=>
  string(5) "array"
  ["relationWrite":protected]=>
  NULL
}