docker.elastic.co/elastic-agent/elastic-agent:8.15.2 linux/amd64

docker.elastic.co/elastic-agent/elastic-agent:8.15.2 - Trivy安全扫描结果 扫描时间: 2024-10-24 22:35
全部漏洞信息
低危漏洞:34 中危漏洞:28 高危漏洞:10 严重漏洞:0

系统OS: ubuntu 20.04 扫描引擎: Trivy 扫描时间: 2024-10-24 22:35

docker.elastic.co/elastic-agent/elastic-agent:8.15.2 (ubuntu 20.04) (ubuntu)
低危漏洞:32 中危漏洞:5 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libgcrypt20 CVE-2024-2236 中危 1.8.5-5ubuntu1.1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-03-06 22:15 修改: 2024-09-14 04:15
libgssapi-krb5-2 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
gpgv CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssapi-krb5-2 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin CVE-2016-20013 低危 2.31-0ubuntu9.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libk5crypto3 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc6 CVE-2016-20013 低危 2.31-0ubuntu9.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libkrb5-3 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
coreutils CVE-2016-2781 低危 8.30-3ubuntu2 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libkrb5support0 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:46c29ada3d98500aefc46de6702a620a1aafaf62ab3973bf33cd4257393412df

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libncurses6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
libncurses6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libncursesw6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
libncursesw6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libpcre2-8-0 CVE-2022-41409 低危 10.34-7ubuntu0.1 pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libpcre3 CVE-2017-11164 低危 2:8.39-12ubuntu0.1 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libsystemd0 CVE-2023-26604 低危 245.4-4ubuntu3.23 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libsystemd0 CVE-2023-7008 低危 245.4-4ubuntu3.23 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libtinfo6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
libtinfo6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libudev1 CVE-2023-26604 低危 245.4-4ubuntu3.23 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libudev1 CVE-2023-7008 低危 245.4-4ubuntu3.23 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
login CVE-2013-4235 低危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: TOCTOU race conditions by copying and removing directory trees

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
login CVE-2023-29383 低危 1:4.8.1-1ubuntu5.20.04.5 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
ncurses-base CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-base CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2024-02-16 22:15 修改: 2024-03-15 11:15
ncurses-bin CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
passwd CVE-2013-4235 低危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: TOCTOU race conditions by copying and removing directory trees

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
passwd CVE-2023-29383 低危 1:4.8.1-1ubuntu5.20.04.5 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:3ec3ded77c0ce89e931f92aed086b2a2c774a6fbd51617853decc8afa4e1087a

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
Java (jar)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/share/elastic-agent/data/elastic-agent-621bbc/components/agentbeat (gobinary)
低危漏洞:1 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
google.golang.org/grpc GHSA-xr7q-jx4m-x55m 低危 v1.64.0 1.64.1 Private tokens could appear in logs if context containing gRPC metadata is logged in github.com/grpc/grpc-go

漏洞详情: https://github.com/advisories/GHSA-xr7q-jx4m-x55m

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
usr/share/elastic-agent/data/elastic-agent-621bbc/components/apm-server (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/cloud-defend (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.21.12 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.21.12 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.21.12 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/cloudbeat (gobinary)
低危漏洞:1 中危漏洞:5 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
github.com/open-policy-agent/opa CVE-2024-8260 中危 v0.62.0 0.68.0 opa: OPA SMB Force-Authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8260

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-08-30 13:15 修改: 2024-09-19 16:08
helm.sh/helm/v3 CVE-2019-25210 中危 v3.14.2 helm: shows secrets with --dry-run option in clear text

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25210

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-03-03 21:15 修改: 2024-09-04 18:35
github.com/aquasecurity/trivy CVE-2024-35192 中危 v0.48.3 0.51.2 Trivy possibly leaks registry credential when scanning images from malicious registries

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35192

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-05-20 21:15 修改: 2024-05-21 12:37
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
google.golang.org/grpc GHSA-xr7q-jx4m-x55m 低危 v1.64.0 1.64.1 Private tokens could appear in logs if context containing gRPC metadata is logged in github.com/grpc/grpc-go

漏洞详情: https://github.com/advisories/GHSA-xr7q-jx4m-x55m

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
usr/share/elastic-agent/data/elastic-agent-621bbc/components/fleet-server (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/osquery-extension.ext (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/pf-elastic-collector (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.5 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.5 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.5 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/pf-elastic-symbolizer (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.5 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.5 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.5 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/components/pf-host-agent (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.5 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.5 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.5 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
usr/share/elastic-agent/data/elastic-agent-621bbc/elastic-agent (gobinary)
低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2024-34156 高危 1.22.6 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib CVE-2024-34155 中危 1.22.6 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 13:03
stdlib CVE-2024-34158 中危 1.22.6 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:294ea3db45ee44df169afdd461c4abfd73b0ce587f04f4c811fcae31083288f5

发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35