docker.io/2926930231/readzen:v1_beta linux/amd64

docker.io/2926930231/readzen:v1_beta - Trivy安全扫描结果扫描时间: 2026-01-22 23:17

全部漏洞信息

低危漏洞:77

中危漏洞:27

高危漏洞:3

严重漏洞:3

系统OS: debian 12.13 扫描引擎: Trivy 扫描时间: 2026-01-22 23:17

docker.io/2926930231/readzen:v1_beta (debian 12.13) (debian)

低危漏洞:77

中危漏洞:25

高危漏洞:2

严重漏洞:3

软件包	漏洞	安全状态	安装版本	漏洞信息
libsqlite3-0	CVE-2025-7458	严重	3.40.1-2+deb12u2	sqlite: SQLite integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2025-07-29 13:15 修改: 2025-08-11 19:11
sqlite3	CVE-2025-7458	严重	3.40.1-2+deb12u2	sqlite: SQLite integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458 镜像层: sha256:15e5de4f6a3f717e570014992a8490377c5f5c13dc465ef388c86c5db9bd2ccf 发布日期: 2025-07-29 13:15 修改: 2025-08-11 19:11
zlib1g	CVE-2023-45853	严重	1:1.2.13.dfsg-1	zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
libc6	CVE-2026-0861	高危	2.36-9+deb12u13	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-14 21:15 修改: 2026-01-16 18:16
libc-bin	CVE-2026-0861	高危	2.36-9+deb12u13	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-14 21:15 修改: 2026-01-16 18:16
libc-bin	CVE-2025-15281	中危	2.36-9+deb12u13	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-20 14:16 修改: 2026-01-20 18:16
libc-bin	CVE-2026-0915	中危	2.36-9+deb12u13	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-15 22:16 修改: 2026-01-20 16:16
gpgv	CVE-2025-30258	中危	2.2.40-1.1+deb12u2	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libc6	CVE-2025-15281	中危	2.36-9+deb12u13	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-20 14:16 修改: 2026-01-20 18:16
libc6	CVE-2026-0915	中危	2.36-9+deb12u13	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-15 22:16 修改: 2026-01-20 16:16
libmount1	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
libncursesw6	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libpam-modules	CVE-2024-10041	中危	1.5.2-6+deb12u2	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin	CVE-2024-10041	中危	1.5.2-6+deb12u2	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime	CVE-2024-10041	中危	1.5.2-6+deb12u2	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g	CVE-2024-10041	中危	1.5.2-6+deb12u2	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libsmartcols1	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
gpgv	CVE-2025-68972	中危	2.2.40-1.1+deb12u2	gnupg: GnuPG: Signature bypass via form feed character in signed messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libsqlite3-0	CVE-2025-7709	中危	3.40.1-2+deb12u2	An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2025-09-08 15:15 修改: 2025-11-18 23:15
libtasn1-6	CVE-2025-13151	中危	4.19.0-2+deb12u1	libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2026-01-07 22:15 修改: 2026-01-20 18:16
libtinfo6	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libuuid1	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
mount	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
ncurses-base	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
ncurses-bin	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libblkid1	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
sqlite3	CVE-2025-7709	中危	3.40.1-2+deb12u2	An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709 镜像层: sha256:15e5de4f6a3f717e570014992a8490377c5f5c13dc465ef388c86c5db9bd2ccf 发布日期: 2025-09-08 15:15 修改: 2025-11-18 23:15
util-linux	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
util-linux-extra	CVE-2025-14104	中危	2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
bsdutils	CVE-2025-14104	中危	1:2.38.1-5+deb12u3	util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-12-05 17:16 修改: 2025-12-08 18:26
libc6	CVE-2019-1010022	低危	2.36-9+deb12u13	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6	CVE-2019-1010023	低危	2.36-9+deb12u13	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6	CVE-2019-1010024	低危	2.36-9+deb12u13	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6	CVE-2019-1010025	低危	2.36-9+deb12u13	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6	CVE-2019-9192	低危	2.36-9+deb12u13	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
libgcc-s1	CVE-2022-27943	低危	12.2.0-14+deb12u1	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libgcrypt20	CVE-2018-6829	低危	1.10.1-3	libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
libgcrypt20	CVE-2024-2236	低危	1.10.1-3	libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-03-06 22:15 修改: 2025-04-02 17:15
libgnutls30	CVE-2011-3389	低危	3.7.9-2+deb12u5	HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2011-09-06 19:55 修改: 2025-04-11 00:51
libgssapi-krb5-2	CVE-2018-5709	低危	1.20.1-2+deb12u4	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libgssapi-krb5-2	CVE-2024-26458	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libgssapi-krb5-2	CVE-2024-26461	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libk5crypto3	CVE-2018-5709	低危	1.20.1-2+deb12u4	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libk5crypto3	CVE-2024-26458	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libk5crypto3	CVE-2024-26461	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libkrb5-3	CVE-2018-5709	低危	1.20.1-2+deb12u4	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5-3	CVE-2024-26458	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5-3	CVE-2024-26461	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libkrb5support0	CVE-2018-5709	低危	1.20.1-2+deb12u4	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5support0	CVE-2024-26458	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5support0	CVE-2024-26461	低危	1.20.1-2+deb12u4	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
apt	CVE-2011-3374	低危	2.6.1	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
libmount1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
gpgv	CVE-2022-3219	低危	2.2.40-1.1+deb12u2	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libncursesw6	CVE-2025-6141	低危	6.4-4	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2025-06-16 22:16 修改: 2025-06-17 20:50
libapt-pkg6.0	CVE-2011-3374	低危	2.6.1	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
bsdutils	CVE-2022-0563	低危	1:2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libblkid1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
coreutils	CVE-2016-2781	低危	9.1-1	coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2017-02-07 15:59 修改: 2025-06-09 16:15
coreutils	CVE-2017-18018	低危	9.1-1	coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
libsmartcols1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
coreutils	CVE-2025-5278	低危	9.1-1	coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-05-27 21:15 修改: 2025-10-22 20:15
libc-bin	CVE-2010-4756	低危	2.36-9+deb12u13	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2011-03-02 20:00 修改: 2025-11-03 22:15
libsqlite3-0	CVE-2021-45346	低危	3.40.1-2+deb12u2	sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2022-02-14 19:15 修改: 2024-11-21 06:32
libsqlite3-0	CVE-2025-29088	低危	3.40.1-2+deb12u2	sqlite: Denial of Service in SQLite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2025-04-10 14:15 修改: 2025-09-30 16:59
libssl3	CVE-2025-27587	低危	3.0.18-1~deb12u1	OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587 镜像层: sha256:4da55371e396a874bd303a2d87abd504491937a6ab07060a403d3b7cc576e0d6 发布日期: 2025-06-16 22:15 修改: 2025-06-26 17:15
libstdc++6	CVE-2022-27943	低危	12.2.0-14+deb12u1	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libsystemd0	CVE-2013-4392	低危	252.39-1~deb12u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2013-10-28 22:55 修改: 2025-06-09 16:15
libsystemd0	CVE-2023-31437	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0	CVE-2023-31438	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd0	CVE-2023-31439	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libc-bin	CVE-2018-20796	低危	2.36-9+deb12u13	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libc-bin	CVE-2019-1010022	低危	2.36-9+deb12u13	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libtinfo6	CVE-2025-6141	低危	6.4-4	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-06-16 22:16 修改: 2025-06-17 20:50
libudev1	CVE-2013-4392	低危	252.39-1~deb12u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2013-10-28 22:55 修改: 2025-06-09 16:15
libudev1	CVE-2023-31437	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1	CVE-2023-31438	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libudev1	CVE-2023-31439	低危	252.39-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libc-bin	CVE-2019-1010023	低危	2.36-9+deb12u13	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libuuid1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
login	CVE-2007-5686	低危	1:4.13+dfsg1-1+deb12u2	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2007-10-28 17:08 修改: 2025-04-09 00:30
login	CVE-2024-56433	低危	1:4.13+dfsg1-1+deb12u2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
login	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+deb12u2	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libc-bin	CVE-2019-1010024	低危	2.36-9+deb12u13	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
mount	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libc-bin	CVE-2019-1010025	低危	2.36-9+deb12u13	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
ncurses-base	CVE-2025-6141	低危	6.4-4	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-06-16 22:16 修改: 2025-06-17 20:50
libc-bin	CVE-2019-9192	低危	2.36-9+deb12u13	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
ncurses-bin	CVE-2025-6141	低危	6.4-4	gnu-ncurses: ncurses Stack Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-06-16 22:16 修改: 2025-06-17 20:50
openssl	CVE-2025-27587	低危	3.0.18-1~deb12u1	OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587 镜像层: sha256:4da55371e396a874bd303a2d87abd504491937a6ab07060a403d3b7cc576e0d6 发布日期: 2025-06-16 22:15 修改: 2025-06-26 17:15
passwd	CVE-2007-5686	低危	1:4.13+dfsg1-1+deb12u2	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2007-10-28 17:08 修改: 2025-04-09 00:30
passwd	CVE-2024-56433	低危	1:4.13+dfsg1-1+deb12u2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+deb12u2	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
perl-base	CVE-2011-4116	低危	5.36.0-7+deb12u3	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl-base	CVE-2023-31486	低危	5.36.0-7+deb12u3	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
dpkg	CVE-2025-6297	低危	1.21.22	It was discovered that dpkg-deb does not properly sanitize directory p ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2025-07-01 17:15 修改: 2025-08-19 17:50
gcc-12-base	CVE-2022-27943	低危	12.2.0-14+deb12u1	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
sqlite3	CVE-2021-45346	低危	3.40.1-2+deb12u2	sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:15e5de4f6a3f717e570014992a8490377c5f5c13dc465ef388c86c5db9bd2ccf 发布日期: 2022-02-14 19:15 修改: 2024-11-21 06:32
sqlite3	CVE-2025-29088	低危	3.40.1-2+deb12u2	sqlite: Denial of Service in SQLite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088 镜像层: sha256:15e5de4f6a3f717e570014992a8490377c5f5c13dc465ef388c86c5db9bd2ccf 发布日期: 2025-04-10 14:15 修改: 2025-09-30 16:59
sysvinit-utils	TEMP-0517018-A83CE6	低危	3.06-4	[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2005-2541	低危	1.34+dfsg-1.2+deb12u1	tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2005-08-10 04:00 修改: 2025-04-03 01:03
tar	TEMP-0290435-0B57B5	低危	1.34+dfsg-1.2+deb12u1	[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bash	TEMP-0841856-B18BAF	低危	5.2.15-2+b10	[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libc6	CVE-2010-4756	低危	2.36-9+deb12u13	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2011-03-02 20:00 修改: 2025-11-03 22:15
util-linux-extra	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libc6	CVE-2018-20796	低危	2.36-9+deb12u13	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libgnutls30	CVE-2025-9820	未知	3.7.9-2+deb12u5	[GNUTLS-SA-2025-11-18] 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820 镜像层: sha256:e0e6002570470d87b99366522e2deadfd07fd6abb0c481198c1e336f9117e5a6 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Python (python-pkg)

低危漏洞:0

中危漏洞:2

高危漏洞:1

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
jaraco.context	CVE-2026-23949	高危	5.3.0	6.1.0	jaraco.context: jaraco.context: Path traversal via malicious tar archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23949 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2026-01-20 01:15 修改: 2026-01-20 01:15
pip	CVE-2023-5752	中危	23.0.1	23.3	pip: Mercurial configuration injectable in repo revision when installing via pip 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2023-10-25 18:17 修改: 2025-11-03 18:15
pip	CVE-2025-8869	中危	23.0.1	25.3	pip: pip missing checks on symbolic link extraction 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8869 镜像层: sha256:9985ec7aaf39e630d3caecff5b8c5afaf393d7130e57ee6be3ca171ca07b9d2a 发布日期: 2025-09-24 15:15 修改: 2025-11-03 18:17

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

jaraco.context

CVE-2026-23949

高危

5.3.0

6.1.0

jaraco.context: jaraco.context: Path traversal via malicious tar archives