docker.io/apache/airflow:2.2.5 linux/amd64

docker.io/apache/airflow:2.2.5 - Trivy安全扫描结果扫描时间: 2025-02-11 15:53

全部漏洞信息

低危漏洞:297

中危漏洞:331

高危漏洞:372

严重漏洞:71

系统OS: debian 10.12 扫描引擎: Trivy 扫描时间: 2025-02-11 15:53

docker.io/apache/airflow:2.2.5 (debian 10.12) (debian)

低危漏洞:289

中危漏洞:274

高危漏洞:325

严重漏洞:58

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2022-32221	严重	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: POST following PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32221 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-05 22:15 修改: 2024-03-27 15:00
db5.3-util	CVE-2019-8457	严重	5.3.28+dfsg1-0.5		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
krb5-user	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libc-bin	CVE-2021-33574	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
libc-bin	CVE-2021-35942	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc-bin	CVE-2022-23218	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc-bin	CVE-2022-23219	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
libc-l10n	CVE-2021-33574	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
libc-l10n	CVE-2021-35942	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc-l10n	CVE-2022-23218	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc-l10n	CVE-2022-23219	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
libc6	CVE-2021-33574	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
libc6	CVE-2021-35942	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc6	CVE-2022-23218	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc6	CVE-2022-23219	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
libcurl4	CVE-2022-32221	严重	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: POST following PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32221 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-05 22:15 修改: 2024-03-27 15:00
libdb5.3	CVE-2019-8457	严重	5.3.28+dfsg1-0.5		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libexpat1	CVE-2024-45491	严重	2.2.6-2+deb10u4		libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1	CVE-2024-45492	严重	2.2.6-2+deb10u4		libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libgssapi-krb5-2	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libgssrpc4	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libk5crypto3	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkadm5clnt-mit11	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkadm5srv-mit11	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkdb5-9	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5-3	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5support0	CVE-2024-37371	严重	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libksba8	CVE-2022-3515	严重	1.3.5-2	1.3.5-2+deb10u1	libksba: integer overflow may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3515 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-12 15:15 修改: 2023-07-06 19:15
libksba8	CVE-2022-47629	严重	1.3.5-2	1.3.5-2+deb10u2	libksba: integer overflow to code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47629 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-20 23:15 修改: 2023-11-07 03:56
libpython2.7-minimal	CVE-2021-3177	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37
libpython2.7-minimal	CVE-2022-48565	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
libpython2.7-stdlib	CVE-2021-3177	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37
libpython2.7-stdlib	CVE-2022-48565	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
libpython3.7-minimal	CVE-2022-37454	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u4	XKCP: buffer overflow in the SHA-3 reference implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-10-21 06:15 修改: 2023-05-03 11:15
libpython3.7-minimal	CVE-2022-48565	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
libpython3.7-stdlib	CVE-2022-37454	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u4	XKCP: buffer overflow in the SHA-3 reference implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-10-21 06:15 修改: 2023-05-03 11:15
libpython3.7-stdlib	CVE-2022-48565	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
libsqlite3-0	CVE-2020-35527	严重	3.27.2-3+deb10u1	3.27.2-3+deb10u2	sqlite: Out of bounds access during table rename 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29
libssl1.1	CVE-2022-2068	严重	1.1.1n-0+deb10u2	1.1.1n-0+deb10u3	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
libtasn1-6	CVE-2021-46848	严重	4.13-3	4.13-3+deb10u1	libtasn1: Out-of-bound access in ETYPE_OK 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-10-24 14:15 修改: 2023-11-07 03:40
locales	CVE-2021-33574	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: mq_notify does not handle separately allocated thread attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35
locales	CVE-2021-35942	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
locales	CVE-2022-23218	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
locales	CVE-2022-23219	严重	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
openssh-client	CVE-2023-38408	严重	1:7.9p1-10+deb10u2	1:7.9p1-10+deb10u3	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
openssl	CVE-2022-2068	严重	1.1.1n-0+deb10u2	1.1.1n-0+deb10u3	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
python2.7	CVE-2021-3177	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37
python2.7	CVE-2022-48565	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
python2.7-minimal	CVE-2021-3177	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37
python2.7-minimal	CVE-2022-48565	严重	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
python3.7	CVE-2022-37454	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u4	XKCP: buffer overflow in the SHA-3 reference implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-10-21 06:15 修改: 2023-05-03 11:15
python3.7	CVE-2022-48565	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
python3.7-minimal	CVE-2022-37454	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u4	XKCP: buffer overflow in the SHA-3 reference implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-10-21 06:15 修改: 2023-05-03 11:15
python3.7-minimal	CVE-2022-48565	严重	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: XML External Entity in XML processing plistlib module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56
rsync	CVE-2024-12084	严重	3.1.3-6		rsync: Heap Buffer Overflow in Rsync due to Improper Checksum Length Handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12084 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-15 15:15 修改: 2025-01-15 15:15
sqlite3	CVE-2020-35527	严重	3.27.2-3+deb10u1	3.27.2-3+deb10u2	sqlite: Out of bounds access during table rename 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29
zlib1g	CVE-2022-37434	严重	1:1.2.11.dfsg-1+deb10u1	1:1.2.11.dfsg-1+deb10u2	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
zlib1g	CVE-2023-45853	严重	1:1.2.11.dfsg-1+deb10u1		zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
bind9-host	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libc-l10n	CVE-2020-1751	高危	2.28-10+deb10u1		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc-l10n	CVE-2020-1752	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: use-after-free in glob() function when expanding ~user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19
libc-l10n	CVE-2020-6096	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libc-l10n	CVE-2021-3326	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
libc-l10n	CVE-2021-3999	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libc-l10n	CVE-2024-2961	高危	2.28-10+deb10u1	2.28-10+deb10u3	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc-l10n	CVE-2024-33599	高危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
bind9-host	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
bsdutils	CVE-2024-28085	高危	1:2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
bind9-host	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
curl	CVE-2021-22946	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
libc6	CVE-2020-1751	高危	2.28-10+deb10u1		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc6	CVE-2020-1752	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: use-after-free in glob() function when expanding ~user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19
libc6	CVE-2020-6096	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libc6	CVE-2021-3326	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
libc6	CVE-2021-3999	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libc6	CVE-2024-2961	高危	2.28-10+deb10u1	2.28-10+deb10u3	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33599	高危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libcom-err2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
curl	CVE-2022-22576	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl4	CVE-2021-22946	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
libcurl4	CVE-2022-22576	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl4	CVE-2022-27781	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: CERTINFO never-ending busy-loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl4	CVE-2022-27782	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl4	CVE-2023-27533	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl4	CVE-2023-27534	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u9	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl4	CVE-2024-2398	高危	7.64.0-4+deb10u2		curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl4	CVE-2024-6197	高危	7.64.0-4+deb10u2		curl: freeing stack buffer in utf8asn1str 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-24 08:15 修改: 2024-11-29 12:15
curl	CVE-2022-27781	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: CERTINFO never-ending busy-loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libdns1104	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
libdns1104	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libdns1104	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libdns1104	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libdns1104	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libdns1104	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
libdns1104	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libdns1104	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libdns1104	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
libdns1104	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libdns1104	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libdns1104	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
curl	CVE-2022-27782	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
curl	CVE-2023-27533	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libexpat1	CVE-2022-40674	高危	2.2.6-2+deb10u4	2.2.6-2+deb10u5	expat: a use-after-free in the doContent function in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
libexpat1	CVE-2022-43680	高危	2.2.6-2+deb10u4	2.2.6-2+deb10u6	expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
libexpat1	CVE-2023-52425	高危	2.2.6-2+deb10u4	2.2.6-2+deb10u7	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
libexpat1	CVE-2024-45490	高危	2.2.6-2+deb10u4		libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
libext2fs2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libfdisk1	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libgcc1	CVE-2018-12886	高危	1:8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libgcc1	CVE-2019-15847	高危	1:8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libgcrypt20	CVE-2021-33560	高危	1.8.4-5+deb10u1		libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libgnutls30	CVE-2022-2509	高危	3.6.7-4+deb10u7	3.6.7-4+deb10u9	gnutls: Double free during gnutls_pkcs7_verify 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
libgnutls30	CVE-2023-0361	高危	3.6.7-4+deb10u7	3.6.7-4+deb10u10	gnutls: timing side-channel in the TLS RSA key exchange code 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0361 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-02-15 18:15 修改: 2023-11-07 04:00
libgnutls30	CVE-2024-0553	高危	3.6.7-4+deb10u7	3.6.7-4+deb10u12	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
curl	CVE-2023-27534	高危	7.64.0-4+deb10u2	7.64.0-4+deb10u9	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libgssapi-krb5-2	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libgssapi-krb5-2	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
curl	CVE-2024-2398	高危	7.64.0-4+deb10u2		curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libgssrpc4	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libgssrpc4	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libidn2-0	CVE-2019-12290	高危	2.0.5-1+deb10u1		GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specifi ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12290 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-10-22 16:15 修改: 2023-11-07 03:03
libisc1100	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
libisc1100	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisc1100	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisc1100	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libisc1100	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libisc1100	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
libisc1100	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisc1100	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisc1100	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
libisc1100	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisc1100	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisc1100	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
libisccc161	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
libisccc161	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisccc161	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisccc161	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libisccc161	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libisccc161	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
libisccc161	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisccc161	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisccc161	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
libisccc161	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisccc161	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisccc161	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
libisccfg163	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
libisccfg163	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisccfg163	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libisccfg163	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libisccfg163	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libisccfg163	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
libisccfg163	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisccfg163	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libisccfg163	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
libisccfg163	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisccfg163	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libisccfg163	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
curl	CVE-2024-6197	高危	7.64.0-4+deb10u2		curl: freeing stack buffer in utf8asn1str 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-24 08:15 修改: 2024-11-29 12:15
libk5crypto3	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libk5crypto3	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
bind9-host	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libkadm5clnt-mit11	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libkadm5clnt-mit11	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
e2fsprogs	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libkadm5srv-mit11	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libkadm5srv-mit11	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
fdisk	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libkdb5-9	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libkdb5-9	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
gcc-8-base	CVE-2018-12886	高危	8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libkrb5-3	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libkrb5-3	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
gcc-8-base	CVE-2019-15847	高危	8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libkrb5support0	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libkrb5support0	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
bind9-host	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
krb5-user	CVE-2022-42898	高危	1.17-3+deb10u3	1.17-3+deb10u5	krb5: integer overflow vulnerabilities in PAC parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15
libldap-2.4-2	CVE-2023-2953	高危	2.4.47+dfsg-3+deb10u7		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
libldap-common	CVE-2023-2953	高危	2.4.47+dfsg-3+deb10u7		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
liblwres161	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
liblwres161	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
liblwres161	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
liblwres161	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
liblwres161	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
liblwres161	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
liblwres161	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
liblwres161	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
liblwres161	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
liblwres161	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
liblwres161	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
liblwres161	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
libmount1	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libncurses6	CVE-2021-39537	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libncurses6	CVE-2022-29458	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u3	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncurses6	CVE-2023-29491	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libncursesw6	CVE-2021-39537	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libncursesw6	CVE-2022-29458	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u3	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncursesw6	CVE-2023-29491	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libnghttp2-14	CVE-2020-11080	高危	1.36.0-2+deb10u1	1.36.0-2+deb10u2	nghttp2: overly large SETTINGS frames can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11080 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-06-03 23:15 修改: 2023-11-07 03:14
libnghttp2-14	CVE-2023-44487	高危	1.36.0-2+deb10u1	1.36.0-2+deb10u2	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
libpam-modules	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpq5	CVE-2022-2625	高危	11.16-0+deb10u1	11.17-0+deb10u1	postgresql: Extension scripts replace objects not belonging to the extension. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2625 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-18 19:15 修改: 2022-12-02 20:14
libpq5	CVE-2023-2454	高危	11.16-0+deb10u1	11.20-0+deb10u1	postgresql: schema_element defeats protective search_path changes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-09 19:15 修改: 2025-01-06 18:15
libpq5	CVE-2023-39417	高危	11.16-0+deb10u1	11.21-0+deb10u2	postgresql: extension script @substitutions@ within quoting allow SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39417 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-11 13:15 修改: 2024-09-09 08:15
libpq5	CVE-2023-5869	高危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Buffer overrun from integer overflow in array modification 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5869 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
libpq5	CVE-2024-0985	高危	11.16-0+deb10u1	11.22-0+deb10u2	postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0985 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-08 13:15 修改: 2024-12-20 13:15
krb5-user	CVE-2024-37370	高危	1.17-3+deb10u3		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
ldap-utils	CVE-2023-2953	高危	2.4.47+dfsg-3+deb10u7		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
libpython2.7-minimal	CVE-2015-20107	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
libpython2.7-minimal	CVE-2019-20907	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: infinite loop in the tarfile module via crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09
libpython2.7-minimal	CVE-2020-10735	高危	2.7.16-2+deb10u1		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython2.7-minimal	CVE-2020-26116	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CRLF injection via HTTP request method in httplib/http.client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20
libpython2.7-minimal	CVE-2021-3737	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
libpython2.7-minimal	CVE-2022-0391	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
libpython2.7-minimal	CVE-2022-45061	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
libpython2.7-minimal	CVE-2022-48560	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
libpython2.7-minimal	CVE-2023-24329	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython2.7-minimal	CVE-2024-6232	高危	2.7.16-2+deb10u1		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libbind9-161	CVE-2022-3094	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: flooding with UPDATE requests may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50
libbind9-161	CVE-2022-38177	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leak in ECDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libpython2.7-stdlib	CVE-2015-20107	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
libpython2.7-stdlib	CVE-2019-20907	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: infinite loop in the tarfile module via crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09
libpython2.7-stdlib	CVE-2020-10735	高危	2.7.16-2+deb10u1		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython2.7-stdlib	CVE-2020-26116	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CRLF injection via HTTP request method in httplib/http.client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20
libpython2.7-stdlib	CVE-2021-3737	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
libpython2.7-stdlib	CVE-2022-0391	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
libpython2.7-stdlib	CVE-2022-45061	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
libpython2.7-stdlib	CVE-2022-48560	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
libpython2.7-stdlib	CVE-2023-24329	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython2.7-stdlib	CVE-2024-6232	高危	2.7.16-2+deb10u1		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libbind9-161	CVE-2022-38178	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: memory leaks in EdDSA DNSSEC verification code 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50
libbind9-161	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libpython3.7-minimal	CVE-2015-20107	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
libpython3.7-minimal	CVE-2020-10735	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython3.7-minimal	CVE-2021-3737	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
libpython3.7-minimal	CVE-2022-0391	高危	3.7.3-2+deb10u3		python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
libpython3.7-minimal	CVE-2022-42919	高危	3.7.3-2+deb10u3		python: local privilege escalation via the multiprocessing forkserver start method 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42919 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-07 00:15 修改: 2023-11-07 03:53
libpython3.7-minimal	CVE-2022-45061	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
libpython3.7-minimal	CVE-2022-48560	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
libpython3.7-minimal	CVE-2023-24329	高危	3.7.3-2+deb10u3		python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython3.7-minimal	CVE-2023-6597	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libbind9-161	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libbind9-161	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
libpython3.7-stdlib	CVE-2015-20107	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
libpython3.7-stdlib	CVE-2020-10735	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython3.7-stdlib	CVE-2021-3737	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
libpython3.7-stdlib	CVE-2022-0391	高危	3.7.3-2+deb10u3		python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
libpython3.7-stdlib	CVE-2022-42919	高危	3.7.3-2+deb10u3		python: local privilege escalation via the multiprocessing forkserver start method 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42919 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-07 00:15 修改: 2023-11-07 03:53
libpython3.7-stdlib	CVE-2022-45061	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
libpython3.7-stdlib	CVE-2022-48560	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
libpython3.7-stdlib	CVE-2023-24329	高危	3.7.3-2+deb10u3		python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython3.7-stdlib	CVE-2023-6597	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libsmartcols1	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libbind9-161	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libsqlite3-0	CVE-2019-19603	高危	3.27.2-3+deb10u1		sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19603 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2019-12-09 19:15 修改: 2023-11-07 03:07
libsqlite3-0	CVE-2020-35525	高危	3.27.2-3+deb10u1	3.27.2-3+deb10u2	sqlite: Null pointer derreference in src/select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15
libsqlite3-0	CVE-2023-7104	高危	3.27.2-3+deb10u1		sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
libss2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libssh2-1	CVE-2019-13115	高危	1.8.0-2.1	1.8.0-2.1+deb10u1	libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13115 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-16 18:15 修改: 2023-11-07 03:03
libssh2-1	CVE-2019-17498	高危	1.8.0-2.1	1.8.0-2.1+deb10u1	libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17498 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-21 22:15 修改: 2023-11-07 03:06
libssh2-1	CVE-2020-22218	高危	1.8.0-2.1	1.8.0-2.1+deb10u1	libssh2: use-of-uninitialized-value in _libssh2_transport_read 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-22218 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-06 15:15
libbind9-161	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libssl1.1	CVE-2022-4450	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0215	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0286	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0464	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
libstdc++6	CVE-2018-12886	高危	8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libstdc++6	CVE-2019-15847	高危	8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libsystemd0	CVE-2019-3843	高危	241-7~deb10u8		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2019-3844	高危	241-7~deb10u8		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2023-26604	高危	241-7~deb10u8	241-7~deb10u9	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libsystemd0	CVE-2023-50387	高危	241-7~deb10u8		bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libsystemd0	CVE-2023-50868	高危	241-7~deb10u8		bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libbind9-161	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
libtinfo6	CVE-2021-39537	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libtinfo6	CVE-2022-29458	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u3	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libtinfo6	CVE-2023-29491	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libudev1	CVE-2019-3843	高危	241-7~deb10u8		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2019-3844	高危	241-7~deb10u8		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2023-26604	高危	241-7~deb10u8	241-7~deb10u9	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libudev1	CVE-2023-50387	高危	241-7~deb10u8		bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libudev1	CVE-2023-50868	高危	241-7~deb10u8		bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libuuid1	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libxml2	CVE-2017-16932	高危	2.9.4+dfsg1-7+deb10u4		libxml2: Infinite recursion in parameter entities 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40
libxml2	CVE-2022-2309	高危	2.9.4+dfsg1-7+deb10u4		lxml: NULL Pointer Dereference in lxml 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2309 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-05 10:15 修改: 2023-11-07 03:46
libxml2	CVE-2022-40303	高危	2.9.4+dfsg1-7+deb10u4	2.9.4+dfsg1-7+deb10u5	libxml2: integer overflows with XML_PARSE_HUGE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
libxml2	CVE-2022-40304	高危	2.9.4+dfsg1-7+deb10u4	2.9.4+dfsg1-7+deb10u5	libxml2: dict corruption caused by entity reference cycles 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
libxml2	CVE-2024-25062	高危	2.9.4+dfsg1-7+deb10u4		libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
libbind9-161	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libbind9-161	CVE-2024-1975	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libbind9-161	CVE-2024-4076	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
libblkid1	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
locales	CVE-2020-1751	高危	2.28-10+deb10u1		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
locales	CVE-2020-1752	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: use-after-free in glob() function when expanding ~user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19
locales	CVE-2020-6096	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
locales	CVE-2021-3326	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
locales	CVE-2021-3999	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
locales	CVE-2024-2961	高危	2.28-10+deb10u1	2.28-10+deb10u3	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
locales	CVE-2024-33599	高危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
mount	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
ncurses-base	CVE-2021-39537	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base	CVE-2022-29458	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u3	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-base	CVE-2023-29491	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2021-39537	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-bin	CVE-2022-29458	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u3	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-bin	CVE-2023-29491	高危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u5	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
bind9-host	CVE-2023-2828	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u9	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
openssh-client	CVE-2021-41617	高危	1:7.9p1-10+deb10u2	1:7.9p1-10+deb10u4	openssh: privilege escalation when AuthorizedKeysCommand or AuthorizedPrincipalsCommand are configured 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41617 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-26 19:15 修改: 2023-12-26 04:15
openssh-client	CVE-2024-6387	高危	1:7.9p1-10+deb10u2		openssh: regreSSHion - race condition in SSH allows RCE/DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-01 13:15 修改: 2024-09-14 03:15
bind9-host	CVE-2023-3341	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u10	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
openssl	CVE-2022-4450	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0215	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0286	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0464	高危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
perl-base	CVE-2020-16156	高危	5.28.1-6+deb10u1		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl-base	CVE-2023-31484	高危	5.28.1-6+deb10u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
postgresql-client-11	CVE-2022-2625	高危	11.16-0+deb10u1	11.17-0+deb10u1	postgresql: Extension scripts replace objects not belonging to the extension. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2625 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-18 19:15 修改: 2022-12-02 20:14
postgresql-client-11	CVE-2023-2454	高危	11.16-0+deb10u1	11.20-0+deb10u1	postgresql: schema_element defeats protective search_path changes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2454 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-09 19:15 修改: 2025-01-06 18:15
postgresql-client-11	CVE-2023-39417	高危	11.16-0+deb10u1	11.21-0+deb10u2	postgresql: extension script @substitutions@ within quoting allow SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39417 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-11 13:15 修改: 2024-09-09 08:15
postgresql-client-11	CVE-2023-5869	高危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Buffer overrun from integer overflow in array modification 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5869 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
postgresql-client-11	CVE-2024-0985	高危	11.16-0+deb10u1	11.22-0+deb10u2	postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0985 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-08 13:15 修改: 2024-12-20 13:15
bind9-host	CVE-2023-4408	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
bind9-host	CVE-2023-50387	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
python2.7	CVE-2015-20107	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
python2.7	CVE-2019-20907	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: infinite loop in the tarfile module via crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09
python2.7	CVE-2020-10735	高危	2.7.16-2+deb10u1		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python2.7	CVE-2020-26116	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CRLF injection via HTTP request method in httplib/http.client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20
python2.7	CVE-2021-3737	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
python2.7	CVE-2022-0391	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
python2.7	CVE-2022-45061	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python2.7	CVE-2022-48560	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python2.7	CVE-2023-24329	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python2.7	CVE-2024-6232	高危	2.7.16-2+deb10u1		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libc-bin	CVE-2020-1751	高危	2.28-10+deb10u1		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc-bin	CVE-2020-1752	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: use-after-free in glob() function when expanding ~user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19
python2.7-minimal	CVE-2015-20107	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
python2.7-minimal	CVE-2019-20907	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: infinite loop in the tarfile module via crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09
python2.7-minimal	CVE-2020-10735	高危	2.7.16-2+deb10u1		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python2.7-minimal	CVE-2020-26116	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CRLF injection via HTTP request method in httplib/http.client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20
python2.7-minimal	CVE-2021-3737	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
python2.7-minimal	CVE-2022-0391	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
python2.7-minimal	CVE-2022-45061	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python2.7-minimal	CVE-2022-48560	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python2.7-minimal	CVE-2023-24329	高危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python2.7-minimal	CVE-2024-6232	高危	2.7.16-2+deb10u1		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libc-bin	CVE-2020-6096	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libc-bin	CVE-2021-3326	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
python3.7	CVE-2015-20107	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
python3.7	CVE-2020-10735	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python3.7	CVE-2021-3737	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
python3.7	CVE-2022-0391	高危	3.7.3-2+deb10u3		python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
python3.7	CVE-2022-42919	高危	3.7.3-2+deb10u3		python: local privilege escalation via the multiprocessing forkserver start method 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42919 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-07 00:15 修改: 2023-11-07 03:53
python3.7	CVE-2022-45061	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python3.7	CVE-2022-48560	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python3.7	CVE-2023-24329	高危	3.7.3-2+deb10u3		python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3.7	CVE-2023-6597	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libc-bin	CVE-2021-3999	高危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libc-bin	CVE-2024-2961	高危	2.28-10+deb10u1	2.28-10+deb10u3	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
python3.7-minimal	CVE-2015-20107	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: mailcap: findmatch() function does not sanitize the second argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-20107 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-04-13 16:15 修改: 2023-11-07 02:25
python3.7-minimal	CVE-2020-10735	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python3.7-minimal	CVE-2021-3737	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: HTTP client possible infinite loop on a 100 Continue response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38
python3.7-minimal	CVE-2022-0391	高危	3.7.3-2+deb10u3		python: urllib.parse does not sanitize URLs containing ASCII newline and tabs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41
python3.7-minimal	CVE-2022-42919	高危	3.7.3-2+deb10u3		python: local privilege escalation via the multiprocessing forkserver start method 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42919 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-07 00:15 修改: 2023-11-07 03:53
python3.7-minimal	CVE-2022-45061	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python3.7-minimal	CVE-2022-48560	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python3.7-minimal	CVE-2023-24329	高危	3.7.3-2+deb10u3		python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3.7-minimal	CVE-2023-6597	高危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libc-bin	CVE-2024-33599	高危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
rsync	CVE-2022-29154	高危	3.1.3-6		rsync: remote arbitrary files write inside the directories of connecting peers 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29154 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-02 15:15 修改: 2023-11-07 03:45
rsync	CVE-2024-12085	高危	3.1.3-6		rsync: Info Leak via Uninitialized Stack Contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12085 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-14 18:15 修改: 2025-01-15 07:15
bind9-host	CVE-2023-50868	高危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u11	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
sqlite3	CVE-2019-19603	高危	3.27.2-3+deb10u1		sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19603 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-12-09 19:15 修改: 2023-11-07 03:07
sqlite3	CVE-2020-35525	高危	3.27.2-3+deb10u1	3.27.2-3+deb10u2	sqlite: Null pointer derreference in src/select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15
sqlite3	CVE-2023-7104	高危	3.27.2-3+deb10u1		sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
sudo	CVE-2023-22809	高危	1.8.27-1+deb10u3	1.8.27-1+deb10u5	sudo: arbitrary file write with privileges of the RunAs user 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22809 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-01-18 17:15 修改: 2023-11-17 19:32
sudo	CVE-2023-42465	高危	1.8.27-1+deb10u3		sudo: Targeted Corruption of Register and Stack Variables 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42465 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-22 16:15 修改: 2024-02-18 03:15
sudo	CVE-2023-7090	高危	1.8.27-1+deb10u3	1.8.27-1+deb10u6	sudo: Improper handling of ipa_hostname leads to privilege mismanagement 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7090 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-23 23:15 修改: 2024-02-08 10:15
util-linux	CVE-2024-28085	高危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
bind9-host	CVE-2024-0760	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
bind9-host	CVE-2024-1737	高危	1:9.11.5.P4+dfsg-5.1+deb10u7		bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
libpython3.7-minimal	CVE-2021-3426	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: Information disclosure via pydoc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3426 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-20 13:15 修改: 2023-11-07 03:38
libpython3.7-minimal	CVE-2021-3733	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
libpython3.7-minimal	CVE-2021-4189	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
libpython3.7-minimal	CVE-2022-48564	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
libpython3.7-minimal	CVE-2022-48566	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
libpython3.7-minimal	CVE-2023-27043	中危	3.7.3-2+deb10u3		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.7-minimal	CVE-2023-40217	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.7-minimal	CVE-2024-0397	中危	3.7.3-2+deb10u3		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.7-minimal	CVE-2024-0450	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libcurl4	CVE-2022-43552	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libcurl4	CVE-2023-23916	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u5	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl4	CVE-2023-27535	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libisccfg163	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
libcurl4	CVE-2023-27536	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl4	CVE-2023-27538	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl4	CVE-2023-28321	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u7	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libk5crypto3	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libcurl4	CVE-2023-46218	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u8	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl4	CVE-2024-11053	中危	7.64.0-4+deb10u2		curl: curl netrc password leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
libcurl4	CVE-2024-6874	中危	7.64.0-4+deb10u2		curl: macidn punycode buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
libpython3.7-stdlib	CVE-2021-23336	中危	3.7.3-2+deb10u3		python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
libpython3.7-stdlib	CVE-2021-3426	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: Information disclosure via pydoc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3426 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-20 13:15 修改: 2023-11-07 03:38
libpython3.7-stdlib	CVE-2021-3733	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
libpython3.7-stdlib	CVE-2021-4189	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
libpython3.7-stdlib	CVE-2022-48564	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
libpython3.7-stdlib	CVE-2022-48566	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
libpython3.7-stdlib	CVE-2023-27043	中危	3.7.3-2+deb10u3		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.7-stdlib	CVE-2023-40217	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.7-stdlib	CVE-2024-0397	中危	3.7.3-2+deb10u3		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.7-stdlib	CVE-2024-0450	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libkadm5clnt-mit11	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libsmartcols1	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcurl4	CVE-2024-7264	中危	7.64.0-4+deb10u2		curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
libcurl4	CVE-2024-8096	中危	7.64.0-4+deb10u2		curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
libcurl4	CVE-2024-9681	中危	7.64.0-4+deb10u2		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
libkadm5srv-mit11	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libsqlite3-0	CVE-2019-19645	中危	3.27.2-3+deb10u1		sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
libsqlite3-0	CVE-2019-19924	中危	3.27.2-3+deb10u1		sqlite: incorrect sqlite3WindowRewrite() error handling leads to mishandling certain parser-tree rewriting 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19924 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07
libsqlite3-0	CVE-2020-13631	中危	3.27.2-3+deb10u1		sqlite: Virtual table can be renamed into the name of one of its shadow tables 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
gpg	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gpg-agent	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gpg-wks-client	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
libkdb5-9	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libc-bin	CVE-2016-10228	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libc-bin	CVE-2019-25013	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libc-bin	CVE-2020-10029	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14
libkrb5-3	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libc-bin	CVE-2020-27618	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libssl1.1	CVE-2022-2097	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-4304	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0465	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0466	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-2650	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-3446	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u6	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-3817	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u6	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-5678	中危	1.1.1n-0+deb10u2		openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-0727	中危	1.1.1n-0+deb10u2		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-4741	中危	1.1.1n-0+deb10u2		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl1.1	CVE-2024-5535	中危	1.1.1n-0+deb10u2		openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libssl1.1	CVE-2024-6119	中危	1.1.1n-0+deb10u2		openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libc-bin	CVE-2023-4806	中危	2.28-10+deb10u1		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libc-bin	CVE-2023-4813	中危	2.28-10+deb10u1		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libkrb5support0	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libc-bin	CVE-2024-33600	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33601	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33602	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
gpg-wks-server	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
libsystemd0	CVE-2021-3997	中危	241-7~deb10u8		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libsystemd0	CVE-2022-3821	中危	241-7~deb10u8	241-7~deb10u10	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
libsystemd0	CVE-2022-4415	中危	241-7~deb10u8		systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
libsystemd0	CVE-2023-7008	中危	241-7~deb10u8		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
libdns1104	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
gpgconf	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gpgsm	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gpgv	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
libtinfo6	CVE-2020-19189	中危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u4	ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
libtinfo6	CVE-2023-50495	中危	6.1+20181013-2+deb10u2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
curl	CVE-2022-32206	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2022-32208	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2022-43552	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libexpat1	CVE-2024-50602	中危	2.2.6-2+deb10u4		libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
krb5-user	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libudev1	CVE-2021-3997	中危	241-7~deb10u8		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libudev1	CVE-2022-3821	中危	241-7~deb10u8	241-7~deb10u10	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
libudev1	CVE-2022-4415	中危	241-7~deb10u8		systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
libudev1	CVE-2023-7008	中危	241-7~deb10u8		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
curl	CVE-2023-23916	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u5	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libuuid1	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libfdisk1	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
curl	CVE-2023-27535	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
liblwres161	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
curl	CVE-2023-27536	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libmount1	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libxml2	CVE-2016-3709	中危	2.9.4+dfsg1-7+deb10u4		libxml2: Incorrect server side include parsing can lead to XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
libxml2	CVE-2016-9318	中危	2.9.4+dfsg1-7+deb10u4		libxml2: XML External Entity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15
libxml2	CVE-2023-28484	中危	2.9.4+dfsg1-7+deb10u4	2.9.4+dfsg1-7+deb10u6	libxml2: NULL dereference in xmlSchemaFixupComplexType 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
libxml2	CVE-2023-29469	中危	2.9.4+dfsg1-7+deb10u4	2.9.4+dfsg1-7+deb10u6	libxml2: Hashing of empty dict strings isn't deterministic 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
libxml2	CVE-2023-39615	中危	2.9.4+dfsg1-7+deb10u4		libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2023-45322	中危	2.9.4+dfsg1-7+deb10u4		libxml2: use-after-free in xmlUnlinkNode() in tree.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
libc-l10n	CVE-2016-10228	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libgcrypt20	CVE-2019-13627	中危	1.8.4-5+deb10u1		libgcrypt: ECDSA timing attack allowing private key leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13627 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-09-25 15:15 修改: 2021-07-21 11:39
libgcrypt20	CVE-2024-2236	中危	1.8.4-5+deb10u1		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libncurses6	CVE-2020-19189	中危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u4	ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
libncurses6	CVE-2023-50495	中危	6.1+20181013-2+deb10u2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libc-l10n	CVE-2019-25013	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libc-l10n	CVE-2020-10029	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14
libc-l10n	CVE-2020-27618	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libncursesw6	CVE-2020-19189	中危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u4	ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
libncursesw6	CVE-2023-50495	中危	6.1+20181013-2+deb10u2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libgnutls30	CVE-2021-4209	中危	3.6.7-4+deb10u7	3.6.7-4+deb10u9	GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
locales	CVE-2016-10228	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
locales	CVE-2019-25013	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
locales	CVE-2020-10029	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14
locales	CVE-2020-27618	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
locales	CVE-2023-4806	中危	2.28-10+deb10u1		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
locales	CVE-2023-4813	中危	2.28-10+deb10u1		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
locales	CVE-2024-33600	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales	CVE-2024-33601	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales	CVE-2024-33602	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
login	CVE-2023-4641	中危	1:4.5-1.1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libgnutls30	CVE-2023-5981	中危	3.6.7-4+deb10u7	3.6.7-4+deb10u11	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
mount	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libnghttp2-14	CVE-2024-28182	中危	1.36.0-2+deb10u1	1.36.0-2+deb10u3	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libc-l10n	CVE-2023-4806	中危	2.28-10+deb10u1		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libpam-modules	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
ncurses-base	CVE-2020-19189	中危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u4	ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-base	CVE-2023-50495	中危	6.1+20181013-2+deb10u2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libpam-modules	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libc-l10n	CVE-2023-4813	中危	2.28-10+deb10u1		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libpam-modules-bin	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
ncurses-bin	CVE-2020-19189	中危	6.1+20181013-2+deb10u2	6.1+20181013-2+deb10u4	ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15
ncurses-bin	CVE-2023-50495	中危	6.1+20181013-2+deb10u2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libpam-modules-bin	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libc-l10n	CVE-2024-33600	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libpam-runtime	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
openssh-client	CVE-2023-48795	中危	1:7.9p1-10+deb10u2	1:7.9p1-10+deb10u4	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
openssh-client	CVE-2023-51385	中危	1:7.9p1-10+deb10u2	1:7.9p1-10+deb10u4	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
libpam-runtime	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libgssapi-krb5-2	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libpam0g	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpcre3	CVE-2020-14155	中危	2:8.39-12		pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
openssl	CVE-2022-2097	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl	CVE-2022-4304	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u4	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0465	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0466	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-2650	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u5	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl	CVE-2023-3446	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u6	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl	CVE-2023-3817	中危	1.1.1n-0+deb10u2	1.1.1n-0+deb10u6	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl	CVE-2023-5678	中危	1.1.1n-0+deb10u2		openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl	CVE-2024-0727	中危	1.1.1n-0+deb10u2		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl	CVE-2024-4741	中危	1.1.1n-0+deb10u2		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
openssl	CVE-2024-5535	中危	1.1.1n-0+deb10u2		openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
openssl	CVE-2024-6119	中危	1.1.1n-0+deb10u2		openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
passwd	CVE-2023-4641	中危	1:4.5-1.1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libc-l10n	CVE-2024-33601	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-l10n	CVE-2024-33602	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
curl	CVE-2023-27538	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u6	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libgssrpc4	CVE-2023-36054	中危	1.17-3+deb10u3	1.17-3+deb10u6	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
curl	CVE-2023-28321	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u7	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libpq5	CVE-2023-2455	中危	11.16-0+deb10u1	11.20-0+deb10u1	postgresql: row security policies disregard user ID changes after inlining. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2455 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-09 19:15 修改: 2025-01-06 18:15
libpq5	CVE-2023-5868	中危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Memory disclosure in aggregate function calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
postgresql-client-11	CVE-2023-2455	中危	11.16-0+deb10u1	11.20-0+deb10u1	postgresql: row security policies disregard user ID changes after inlining. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2455 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-06-09 19:15 修改: 2025-01-06 18:15
postgresql-client-11	CVE-2023-5868	中危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Memory disclosure in aggregate function calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5868 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
postgresql-client-11	CVE-2023-5870	中危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Role pg_signal_backend can signal certain superuser processes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5870 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
libpq5	CVE-2023-5870	中危	11.16-0+deb10u1	11.22-0+deb10u1	postgresql: Role pg_signal_backend can signal certain superuser processes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5870 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-10 18:15 修改: 2024-09-14 00:15
libprotobuf-c1	CVE-2022-33070	中危	1.3.1-1+b1		protobuf-c: invalid arithmetic shift via the function parse_tag_and_wiretype may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33070 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:48
libprotobuf-c1	CVE-2022-48468	中危	1.3.1-1+b1		protobuf-c: unsigned integer overflow in parse_required_member 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48468 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-13 21:15 修改: 2023-11-07 03:56
curl	CVE-2023-46218	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u8	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
curl	CVE-2024-11053	中危	7.64.0-4+deb10u2		curl: curl netrc password leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
curl	CVE-2024-6874	中危	7.64.0-4+deb10u2		curl: macidn punycode buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
curl	CVE-2024-7264	中危	7.64.0-4+deb10u2		curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
curl	CVE-2024-8096	中危	7.64.0-4+deb10u2		curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
curl	CVE-2024-9681	中危	7.64.0-4+deb10u2		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-11-06 08:15 修改: 2024-12-13 14:15
bsdutils	CVE-2021-37600	中危	1:2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
dirmngr	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
libbind9-161	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
python2.7	CVE-2020-8492	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26
python2.7	CVE-2021-23336	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
python2.7	CVE-2021-3733	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
python2.7	CVE-2021-4189	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
python2.7	CVE-2022-48566	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
python2.7	CVE-2023-27043	中危	2.7.16-2+deb10u1		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python2.7	CVE-2023-40217	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python2.7	CVE-2024-0397	中危	2.7.16-2+deb10u1		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python2.7	CVE-2024-0450	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python2.7	CVE-2024-6923	中危	2.7.16-2+deb10u1		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
libc6	CVE-2016-10228	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libc6	CVE-2019-25013	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libc6	CVE-2020-10029	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14
libpython2.7-minimal	CVE-2020-8492	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26
libpython2.7-minimal	CVE-2021-23336	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
libpython2.7-minimal	CVE-2021-3733	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
libpython2.7-minimal	CVE-2021-4189	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
libpython2.7-minimal	CVE-2022-48566	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
libpython2.7-minimal	CVE-2023-27043	中危	2.7.16-2+deb10u1		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython2.7-minimal	CVE-2023-40217	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython2.7-minimal	CVE-2024-0397	中危	2.7.16-2+deb10u1		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython2.7-minimal	CVE-2024-0450	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python2.7-minimal	CVE-2020-8492	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26
python2.7-minimal	CVE-2021-23336	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
python2.7-minimal	CVE-2021-3733	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
python2.7-minimal	CVE-2021-4189	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
python2.7-minimal	CVE-2022-48566	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
python2.7-minimal	CVE-2023-27043	中危	2.7.16-2+deb10u1		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python2.7-minimal	CVE-2023-40217	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python2.7-minimal	CVE-2024-0397	中危	2.7.16-2+deb10u1		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python2.7-minimal	CVE-2024-0450	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python2.7-minimal	CVE-2024-6923	中危	2.7.16-2+deb10u1		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
libpython2.7-minimal	CVE-2024-6923	中危	2.7.16-2+deb10u1		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
libisc1100	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
libc6	CVE-2020-27618	中危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libc6	CVE-2023-4806	中危	2.28-10+deb10u1		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libc6	CVE-2023-4813	中危	2.28-10+deb10u1		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libc6	CVE-2024-33600	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33601	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33602	中危	2.28-10+deb10u1	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
bind9-host	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
libblkid1	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
curl	CVE-2021-22947	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
python3.7	CVE-2021-23336	中危	3.7.3-2+deb10u3		python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
python3.7	CVE-2021-3426	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: Information disclosure via pydoc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3426 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-20 13:15 修改: 2023-11-07 03:38
python3.7	CVE-2021-3733	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
python3.7	CVE-2021-4189	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
python3.7	CVE-2022-48564	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
python3.7	CVE-2022-48566	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
python3.7	CVE-2023-27043	中危	3.7.3-2+deb10u3		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.7	CVE-2023-40217	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.7	CVE-2024-0397	中危	3.7.3-2+deb10u3		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.7	CVE-2024-0450	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
fdisk	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
curl	CVE-2022-27774	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libpython2.7-stdlib	CVE-2020-8492	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26
libpython2.7-stdlib	CVE-2021-23336	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
libpython2.7-stdlib	CVE-2021-3733	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
libpython2.7-stdlib	CVE-2021-4189	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u2	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
libpython2.7-stdlib	CVE-2022-48566	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
libpython2.7-stdlib	CVE-2023-27043	中危	2.7.16-2+deb10u1		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython2.7-stdlib	CVE-2023-40217	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython2.7-stdlib	CVE-2024-0397	中危	2.7.16-2+deb10u1		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython2.7-stdlib	CVE-2024-0450	中危	2.7.16-2+deb10u1	2.7.16-2+deb10u4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.7-minimal	CVE-2021-23336	中危	3.7.3-2+deb10u3		python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
python3.7-minimal	CVE-2021-3426	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: Information disclosure via pydoc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3426 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-05-20 13:15 修改: 2023-11-07 03:38
python3.7-minimal	CVE-2021-3733	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: urllib: Regular expression DoS in AbstractBasicAuthHandler 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15
python3.7-minimal	CVE-2021-4189	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u5	python: ftplib should not use the host from the PASV response 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15
python3.7-minimal	CVE-2022-48564	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
python3.7-minimal	CVE-2022-48566	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04
python3.7-minimal	CVE-2023-27043	中危	3.7.3-2+deb10u3		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.7-minimal	CVE-2023-40217	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u6	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.7-minimal	CVE-2024-0397	中危	3.7.3-2+deb10u3		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.7-minimal	CVE-2024-0450	中危	3.7.3-2+deb10u3	3.7.3-2+deb10u7	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython2.7-stdlib	CVE-2024-6923	中危	2.7.16-2+deb10u1		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-08-01 14:15 修改: 2025-01-11 15:15
curl	CVE-2022-27776	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libisccc161	CVE-2022-2795	中危	1:9.11.5.P4+dfsg-5.1+deb10u7	1:9.11.5.P4+dfsg-5.1+deb10u8	bind: processing large delegations may severely degrade resolver performance 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-21 11:15 修改: 2024-11-29 12:15
rsync	CVE-2024-12086	中危	3.1.3-6		rsync: rsync server leaks arbitrary client files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12086 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-14 18:15 修改: 2025-01-14 22:15
rsync	CVE-2024-12087	中危	3.1.3-6		rsync: Path traversal vulnerability in rsync 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12087 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-14 18:15 修改: 2025-01-14 22:15
rsync	CVE-2024-12088	中危	3.1.3-6		rsync: --safe-links option bypass leads to path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12088 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-14 18:15 修改: 2025-01-14 22:15
rsync	CVE-2024-12747	中危	3.1.3-6		rsync: Race Condition in rsync Handling Symbolic Links 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12747 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2025-01-14 18:15 修改: 2025-01-14 22:15
gnupg	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnupg-l10n	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnupg-utils	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
gnupg2	CVE-2022-34903	中危	2.2.12-1+deb10u1	2.2.12-1+deb10u2	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
sqlite3	CVE-2019-19645	中危	3.27.2-3+deb10u1		sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
sqlite3	CVE-2019-19924	中危	3.27.2-3+deb10u1		sqlite: incorrect sqlite3WindowRewrite() error handling leads to mishandling certain parser-tree rewriting 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19924 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07
sqlite3	CVE-2020-13631	中危	3.27.2-3+deb10u1		sqlite: Virtual table can be renamed into the name of one of its shadow tables 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libcurl4	CVE-2021-22947	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libcurl4	CVE-2022-27774	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl4	CVE-2022-27776	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
sudo	CVE-2023-28486	中危	1.8.27-1+deb10u3	1.8.27-1+deb10u6	sudo: Sudo does not escape control characters in log messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28486 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-16 01:15 修改: 2024-02-03 11:15
sudo	CVE-2023-28487	中危	1.8.27-1+deb10u3	1.8.27-1+deb10u6	sudo: Sudo does not escape control characters in sudoreplay output 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28487 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-03-16 01:15 修改: 2024-02-03 11:15
libcurl4	CVE-2022-32206	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
util-linux	CVE-2021-37600	中危	2.33.1-0.1	2.33.1-0.1+deb10u1	util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcurl4	CVE-2022-32208	中危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libpython3.7-minimal	CVE-2021-23336	中危	3.7.3-2+deb10u3		python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30
libudev1	CVE-2013-4392	低危	241-7~deb10u8		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libudev1	CVE-2019-20386	低危	241-7~deb10u8		systemd: memory leak in button_open() in login/logind-button.c when udev events are received 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09
libudev1	CVE-2020-13529	低危	241-7~deb10u8		systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libudev1	CVE-2023-31437	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1	CVE-2023-31438	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libudev1	CVE-2023-31439	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
curl	CVE-2023-28320	低危	7.64.0-4+deb10u2		curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
gpg-wks-server	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libuuid1	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
gpg-wks-server	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2023-28322	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u8	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
gpgconf	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpgconf	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2023-38546	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u7	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
gpgsm	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libc-bin	CVE-2010-4756	低危	2.28-10+deb10u1		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc-bin	CVE-2018-20796	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc-bin	CVE-2019-1010022	低危	2.28-10+deb10u1		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010023	低危	2.28-10+deb10u1		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010024	低危	2.28-10+deb10u1		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libxml2	CVE-2024-34459	低危	2.9.4+dfsg1-7+deb10u4		libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libc-bin	CVE-2019-1010025	低危	2.28-10+deb10u1		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-19126	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07
libc-bin	CVE-2019-9192	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libc-bin	CVE-2021-27645	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
gpgsm	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2024-2379	低危	7.64.0-4+deb10u2		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libpython2.7-minimal	CVE-2013-7040	低危	2.7.16-2+deb10u1		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
libpython2.7-minimal	CVE-2017-17522	低危	2.7.16-2+deb10u1		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython2.7-minimal	CVE-2019-18348	低危	2.7.16-2+deb10u1		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython2.7-minimal	CVE-2019-9674	低危	2.7.16-2+deb10u1		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython2.7-minimal	CVE-2020-27619	低危	2.7.16-2+deb10u1		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython2.7-minimal	CVE-2021-28861	低危	2.7.16-2+deb10u1		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython2.7-minimal	CVE-2024-5642	低危	2.7.16-2+deb10u1		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
gpgv	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpgv	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libcurl4	CVE-2020-19909	低危	7.64.0-4+deb10u2		Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19909 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2024-08-04 15:15
libcurl4	CVE-2021-22898	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
libcurl4	CVE-2021-22922	低危	7.64.0-4+deb10u2		curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libcurl4	CVE-2021-22923	低危	7.64.0-4+deb10u2		curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl4	CVE-2021-22924	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
locales	CVE-2010-4756	低危	2.28-10+deb10u1		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
locales	CVE-2018-20796	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
locales	CVE-2019-1010022	低危	2.28-10+deb10u1		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010023	低危	2.28-10+deb10u1		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010024	低危	2.28-10+deb10u1		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010025	低危	2.28-10+deb10u1		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-19126	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07
locales	CVE-2019-9192	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
locales	CVE-2021-27645	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
libk5crypto3	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
login	CVE-2007-5686	低危	1:4.5-1.1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
login	CVE-2013-4235	低危	1:4.5-1.1		shadow-utils: TOCTOU race conditions by copying and removing directory trees 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
login	CVE-2018-7169	低危	1:4.5-1.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
login	CVE-2019-19882	低危	1:4.5-1.1		shadow-utils: local users can obtain root access because setuid programs are misconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19882 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-12-18 16:15 修改: 2020-08-25 15:15
login	CVE-2023-29383	低危	1:4.5-1.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login	CVE-2024-56433	低危	1:4.5-1.1		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
login	TEMP-0628843-DBAD28	低危	1:4.5-1.1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libk5crypto3	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
mount	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libcurl4	CVE-2022-35252	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
libcurl4	CVE-2023-28320	低危	7.64.0-4+deb10u2		curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl4	CVE-2023-28322	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u8	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl4	CVE-2023-38546	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u7	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libkadm5clnt-mit11	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkadm5clnt-mit11	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkadm5clnt-mit11	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libcurl4	CVE-2024-2379	低危	7.64.0-4+deb10u2		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
apt-utils	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
bash	CVE-2019-18276	低危	5.0-4		bash: when effective UID is not equal to its real UID the saved UID is not dropped 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18276 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-11-28 01:15 修改: 2023-11-07 03:06
odbcinst	CVE-2024-1013	低危	2.3.6-0.1		unixODBC: out of bounds stack write due to pointer-to-integer types conversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-18 11:15 修改: 2024-03-18 12:38
odbcinst1debian2	CVE-2024-1013	低危	2.3.6-0.1		unixODBC: out of bounds stack write due to pointer-to-integer types conversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-18 11:15 修改: 2024-03-18 12:38
dirmngr	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libkadm5srv-mit11	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libpython2.7-stdlib	CVE-2013-7040	低危	2.7.16-2+deb10u1		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
libpython2.7-stdlib	CVE-2017-17522	低危	2.7.16-2+deb10u1		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython2.7-stdlib	CVE-2019-18348	低危	2.7.16-2+deb10u1		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
openssh-client	CVE-2007-2243	低危	1:7.9p1-10+deb10u2		OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
openssh-client	CVE-2007-2768	低危	1:7.9p1-10+deb10u2		OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
openssh-client	CVE-2008-3234	低危	1:7.9p1-10+deb10u2		sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
openssh-client	CVE-2016-20012	低危	1:7.9p1-10+deb10u2		openssh: Public key information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
openssh-client	CVE-2018-15919	低危	1:7.9p1-10+deb10u2		openssh: User enumeration via malformed packets in authentication requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
openssh-client	CVE-2019-16905	低危	1:7.9p1-10+deb10u2		openssh: an integer overflow in the private key parsing code for the XMSS key type 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16905 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-09 20:15 修改: 2023-03-01 01:56
openssh-client	CVE-2019-6110	低危	1:7.9p1-10+deb10u2		openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
openssh-client	CVE-2020-12062	低危	1:7.9p1-10+deb10u2		openssh: scp can send duplicate responses to the server upon a utimes system call failure leading to overwrite of arbitrary files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12062 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-06-01 16:15 修改: 2024-08-04 12:15
openssh-client	CVE-2020-14145	低危	1:7.9p1-10+deb10u2		openssh: Observable discrepancy leading to an information leak in the algorithm negotiation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
openssh-client	CVE-2020-15778	低危	1:7.9p1-10+deb10u2		openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh-client	CVE-2021-36368	低危	1:7.9p1-10+deb10u2		openssh: possible bypass of fido 2 devices and ssh-askpass 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36368 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-03-13 00:15 修改: 2024-08-04 01:15
openssh-client	CVE-2023-51767	低危	1:7.9p1-10+deb10u2		openssh: authentication bypass via row hammer attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
openssh-client	CVE-2024-39894	低危	1:7.9p1-10+deb10u2		openssh: Logic error in ObscureKeystrokeTiming 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39894 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-07-02 18:15 修改: 2024-09-11 16:15
libpython2.7-stdlib	CVE-2019-9674	低危	2.7.16-2+deb10u1		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython2.7-stdlib	CVE-2020-27619	低危	2.7.16-2+deb10u1		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython2.7-stdlib	CVE-2021-28861	低危	2.7.16-2+deb10u1		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython2.7-stdlib	CVE-2024-5642	低危	2.7.16-2+deb10u1		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libkadm5srv-mit11	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkadm5srv-mit11	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
dirmngr	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
krb5-user	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
krb5-user	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
krb5-user	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libkdb5-9	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkdb5-9	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkdb5-9	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
bash	TEMP-0841856-B18BAF	低危	5.0-4		[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ldap-utils	CVE-2015-3276	低危	2.4.47+dfsg-3+deb10u7		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
ldap-utils	CVE-2017-14159	低危	2.4.47+dfsg-3+deb10u7		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
ldap-utils	CVE-2017-17740	低危	2.4.47+dfsg-3+deb10u7		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
openssl	CVE-2024-2511	低危	1.1.1n-0+deb10u2		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl	CVE-2024-9143	低危	1.1.1n-0+deb10u2		openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libkrb5-3	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
passwd	CVE-2007-5686	低危	1:4.5-1.1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
passwd	CVE-2013-4235	低危	1:4.5-1.1		shadow-utils: TOCTOU race conditions by copying and removing directory trees 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
passwd	CVE-2018-7169	低危	1:4.5-1.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
passwd	CVE-2019-19882	低危	1:4.5-1.1		shadow-utils: local users can obtain root access because setuid programs are misconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19882 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-12-18 16:15 修改: 2020-08-25 15:15
passwd	CVE-2023-29383	低危	1:4.5-1.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd	CVE-2024-56433	低危	1:4.5-1.1		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd	TEMP-0628843-DBAD28	低危	1:4.5-1.1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libkrb5-3	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
perl-base	CVE-2011-4116	低危	5.28.1-6+deb10u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-base	CVE-2023-31486	低危	5.28.1-6+deb10u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
ldap-utils	CVE-2020-15719	低危	2.4.47+dfsg-3+deb10u7		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libapt-inst2.0	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
libapt-pkg5.0	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
bsdutils	CVE-2022-0563	低危	1:2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libkrb5support0	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libpython3.7-minimal	CVE-2017-17522	低危	3.7.3-2+deb10u3		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython3.7-minimal	CVE-2019-18348	低危	3.7.3-2+deb10u3		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython3.7-minimal	CVE-2019-9674	低危	3.7.3-2+deb10u3		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
python2	CVE-2008-4108	低危	2.7.16-1		python: Generic FAQ wizard moving tool insecure auxiliary /tmp file usage (symlink attack possible) 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4108 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2008-09-18 17:59 修改: 2017-08-08 01:32
python2-minimal	CVE-2008-4108	低危	2.7.16-1		python: Generic FAQ wizard moving tool insecure auxiliary /tmp file usage (symlink attack possible) 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4108 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2008-09-18 17:59 修改: 2017-08-08 01:32
libpython3.7-minimal	CVE-2020-27619	低危	3.7.3-2+deb10u3		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython3.7-minimal	CVE-2021-28861	低危	3.7.3-2+deb10u3		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython3.7-minimal	CVE-2024-4032	低危	3.7.3-2+deb10u3		python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.7-minimal	CVE-2024-5642	低危	3.7.3-2+deb10u3		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libkrb5support0	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
coreutils	CVE-2016-2781	低危	8.30-3		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libc-l10n	CVE-2010-4756	低危	2.28-10+deb10u1		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc-l10n	CVE-2018-20796	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libldap-2.4-2	CVE-2015-3276	低危	2.4.47+dfsg-3+deb10u7		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-2.4-2	CVE-2017-14159	低危	2.4.47+dfsg-3+deb10u7		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
libldap-2.4-2	CVE-2017-17740	低危	2.4.47+dfsg-3+deb10u7		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-2.4-2	CVE-2020-15719	低危	2.4.47+dfsg-3+deb10u7		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libc-l10n	CVE-2019-1010022	低危	2.28-10+deb10u1		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libldap-common	CVE-2015-3276	低危	2.4.47+dfsg-3+deb10u7		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-common	CVE-2017-14159	低危	2.4.47+dfsg-3+deb10u7		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
libldap-common	CVE-2017-17740	低危	2.4.47+dfsg-3+deb10u7		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-common	CVE-2020-15719	低危	2.4.47+dfsg-3+deb10u7		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libc-l10n	CVE-2019-1010023	低危	2.28-10+deb10u1		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-l10n	CVE-2019-1010024	低危	2.28-10+deb10u1		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libexpat1	CVE-2013-0340	低危	2.2.6-2+deb10u4		expat: internal entity expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0340 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2014-01-21 18:55 修改: 2023-11-07 02:13
libexpat1	CVE-2023-52426	低危	2.2.6-2+deb10u4		expat: recursive XML entity expansion vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15
python2.7	CVE-2013-7040	低危	2.7.16-2+deb10u1		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
python2.7	CVE-2017-17522	低危	2.7.16-2+deb10u1		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
python2.7	CVE-2019-18348	低危	2.7.16-2+deb10u1		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
python2.7	CVE-2019-9674	低危	2.7.16-2+deb10u1		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
python2.7	CVE-2020-27619	低危	2.7.16-2+deb10u1		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
python2.7	CVE-2021-28861	低危	2.7.16-2+deb10u1		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python2.7	CVE-2024-5642	低危	2.7.16-2+deb10u1		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libexpat1	CVE-2024-28757	低危	2.2.6-2+deb10u4		expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
libc-l10n	CVE-2019-1010025	低危	2.28-10+deb10u1		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-l10n	CVE-2019-19126	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07
libpython3.7-stdlib	CVE-2017-17522	低危	3.7.3-2+deb10u3		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython3.7-stdlib	CVE-2019-18348	低危	3.7.3-2+deb10u3		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython3.7-stdlib	CVE-2019-9674	低危	3.7.3-2+deb10u3		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython3.7-stdlib	CVE-2020-27619	低危	3.7.3-2+deb10u3		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython3.7-stdlib	CVE-2021-28861	低危	3.7.3-2+deb10u3		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython3.7-stdlib	CVE-2024-4032	低危	3.7.3-2+deb10u3		python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.7-stdlib	CVE-2024-5642	低危	3.7.3-2+deb10u3		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libseccomp2	CVE-2019-9893	低危	2.3.3-4		libseccomp: incorrect generation of syscall filters in libseccomp 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9893 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-03-21 16:01 修改: 2020-08-24 17:37
libsepol1	CVE-2021-36084	低危	2.8-1		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36085	低危	2.8-1		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.8-1		libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36087	低危	2.8-1		libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libc-l10n	CVE-2019-9192	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libfdisk1	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libsmartcols1	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libc-l10n	CVE-2021-27645	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
fdisk	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgcc1	CVE-2023-4039	低危	1:8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
coreutils	CVE-2017-18018	低危	8.30-3		coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
python2.7-minimal	CVE-2013-7040	低危	2.7.16-2+deb10u1		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
python2.7-minimal	CVE-2017-17522	低危	2.7.16-2+deb10u1		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
python2.7-minimal	CVE-2019-18348	低危	2.7.16-2+deb10u1		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
python2.7-minimal	CVE-2019-9674	低危	2.7.16-2+deb10u1		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
python2.7-minimal	CVE-2020-27619	低危	2.7.16-2+deb10u1		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
python2.7-minimal	CVE-2021-28861	低危	2.7.16-2+deb10u1		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python2.7-minimal	CVE-2024-5642	低危	2.7.16-2+deb10u1		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
liblz4-1	CVE-2019-17543	低危	1.8.3-1+deb10u1		lz4: heap-based buffer overflow in LZ4_write32 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
apt	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
gcc-8-base	CVE-2023-4039	低危	8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libsqlite3-0	CVE-2019-19244	低危	3.27.2-3+deb10u1		sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12
libsqlite3-0	CVE-2020-11656	低危	3.27.2-3+deb10u1		sqlite: use-after-free in the ALTER TABLE implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11656 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
libsqlite3-0	CVE-2021-36690	低危	3.27.2-3+deb10u1		A segmentation fault can occur in the sqlite3.exe command-line compone ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36690 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2021-08-24 14:15 修改: 2024-08-04 01:15
libsqlite3-0	CVE-2021-45346	低危	3.27.2-3+deb10u1		sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15
libsqlite3-0	CVE-2022-35737	低危	3.27.2-3+deb10u1		sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737 镜像层: sha256:82baccdbb0707481406c96e8f95bbbf50c5c8b6705182a59b9b0228fbecbb96a 发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
libmount1	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgcrypt20	CVE-2018-6829	低危	1.8.4-5+deb10u1		libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
apt-transport-https	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
gnupg	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2020-19909	低危	7.64.0-4+deb10u2		Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19909 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-08-22 19:16 修改: 2024-08-04 15:15
gnupg-l10n	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libgnutls30	CVE-2011-3389	低危	3.6.7-4+deb10u7		HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
gnupg-l10n	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
curl	CVE-2021-22898	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
gnupg-utils	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg-utils	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssapi-krb5-2	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
python3.7	CVE-2017-17522	低危	3.7.3-2+deb10u3		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
python3.7	CVE-2019-18348	低危	3.7.3-2+deb10u3		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
python3.7	CVE-2019-9674	低危	3.7.3-2+deb10u3		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
python3.7	CVE-2020-27619	低危	3.7.3-2+deb10u3		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
python3.7	CVE-2021-28861	低危	3.7.3-2+deb10u3		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python3.7	CVE-2024-4032	低危	3.7.3-2+deb10u3		python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.7	CVE-2024-5642	低危	3.7.3-2+deb10u3		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libgssapi-krb5-2	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libodbc1	CVE-2024-1013	低危	2.3.6-0.1		unixODBC: out of bounds stack write due to pointer-to-integer types conversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-18 11:15 修改: 2024-03-18 12:38
libgssapi-krb5-2	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libblkid1	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
curl	CVE-2021-22922	低危	7.64.0-4+deb10u2		curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
gnupg2	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg2	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssrpc4	CVE-2018-5709	低危	1.17-3+deb10u3		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libssl1.1	CVE-2024-2511	低危	1.1.1n-0+deb10u2		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-9143	低危	1.1.1n-0+deb10u2		openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libgssrpc4	CVE-2024-26458	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssrpc4	CVE-2024-26461	低危	1.17-3+deb10u3		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libstdc++6	CVE-2023-4039	低危	8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
curl	CVE-2021-22923	低危	7.64.0-4+deb10u2		curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
gpg	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpg	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libc6	CVE-2010-4756	低危	2.28-10+deb10u1		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc6	CVE-2018-20796	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libpcre3	CVE-2017-11164	低危	2:8.39-12		pcre: OP_KETRMAX feature in the match function in pcre_exec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libpcre3	CVE-2017-16231	低危	2:8.39-12		pcre: self-recursive call in match() in pcre_exec.c leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16231 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-03-21 15:59 修改: 2024-08-05 21:15
libpcre3	CVE-2017-7245	低危	2:8.39-12		pcre: stack-based buffer overflow write in pcre32_copy_substring 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7245 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29
python3.7-minimal	CVE-2017-17522	低危	3.7.3-2+deb10u3		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
python3.7-minimal	CVE-2019-18348	低危	3.7.3-2+deb10u3		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
python3.7-minimal	CVE-2019-9674	低危	3.7.3-2+deb10u3		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
python3.7-minimal	CVE-2020-27619	低危	3.7.3-2+deb10u3		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
python3.7-minimal	CVE-2021-28861	低危	3.7.3-2+deb10u3		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python3.7-minimal	CVE-2024-4032	低危	3.7.3-2+deb10u3		python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.7-minimal	CVE-2024-5642	低危	3.7.3-2+deb10u3		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libpcre3	CVE-2017-7246	低危	2:8.39-12		pcre: stack-based buffer overflow write in pcre32_copy_substring 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7246 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29
libsystemd0	CVE-2013-4392	低危	241-7~deb10u8		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libsystemd0	CVE-2019-20386	低危	241-7~deb10u8		systemd: memory leak in button_open() in login/logind-button.c when udev events are received 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09
libsystemd0	CVE-2020-13529	低危	241-7~deb10u8		systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libsystemd0	CVE-2023-31437	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0	CVE-2023-31438	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2023-31439	低危	241-7~deb10u8		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libpcre3	CVE-2019-20838	低危	2:8.39-12		pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:05
libtasn1-6	CVE-2018-1000654	低危	4.13-3		libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51
libc6	CVE-2019-1010022	低危	2.28-10+deb10u1		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010023	低危	2.28-10+deb10u1		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010024	低危	2.28-10+deb10u1		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010025	低危	2.28-10+deb10u1		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-19126	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07
sqlite3	CVE-2019-19244	低危	3.27.2-3+deb10u1		sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12
sqlite3	CVE-2020-11656	低危	3.27.2-3+deb10u1		sqlite: use-after-free in the ALTER TABLE implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11656 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
sqlite3	CVE-2021-36690	低危	3.27.2-3+deb10u1		A segmentation fault can occur in the sqlite3.exe command-line compone ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36690 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-24 14:15 修改: 2024-08-04 01:15
sqlite3	CVE-2021-45346	低危	3.27.2-3+deb10u1		sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15
sqlite3	CVE-2022-35737	低危	3.27.2-3+deb10u1		sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
libc6	CVE-2019-9192	低危	2.28-10+deb10u1		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libc6	CVE-2021-27645	低危	2.28-10+deb10u1	2.28-10+deb10u2	glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27645 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 2021-02-24 15:15 修改: 2023-11-07 03:31
curl	CVE-2021-22924	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u3	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
gpg-agent	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpg-agent	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
sudo	CVE-2005-1119	低危	1.8.27-1+deb10u3		Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-1119 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2005-05-02 04:00 修改: 2008-09-05 20:48
sudo	CVE-2019-19232	低危	1.8.27-1+deb10u3		sudo: attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19232 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-12-19 21:15 修改: 2024-08-05 02:16
sudo	CVE-2019-19234	低危	1.8.27-1+deb10u3		sudo: by using ! character in the shadow file instead of a password hash can access to a run as all sudoer account 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19234 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2019-12-19 21:15 修改: 2024-08-05 02:16
sudo	CVE-2021-23239	低危	1.8.27-1+deb10u3	1.8.27-1+deb10u4	sudo: possible directory existence test due to race condition in sudoedit 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23239 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-12 09:15 修改: 2023-11-07 03:30
sudo	CVE-2021-23240	低危	1.8.27-1+deb10u3		sudo: symbolic link attack in SELinux-enabled sudoedit 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23240 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2021-01-12 09:15 修改: 2023-11-07 03:30
sudo	CVE-2022-43995	低危	1.8.27-1+deb10u3		sudo: heap-based overflow with very small passwords 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43995 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-11-02 14:15 修改: 2022-12-06 00:15
sysvinit-utils	TEMP-0517018-A83CE6	低危	2.93-8		[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2005-2541	低危	1.30+dfsg-6		tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
tar	CVE-2019-9923	低危	1.30+dfsg-6		tar: null-pointer dereference in pax_decode_header in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
tar	CVE-2021-20193	低危	1.30+dfsg-6		tar: Memory leak in read_header() in list.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15
tar	CVE-2022-48303	低危	1.30+dfsg-6		tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
tar	CVE-2023-39804	低危	1.30+dfsg-6	1.30+dfsg-6+deb10u1	tar: Incorrectly handled extension attributes in PAX archives can lead to a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35
tar	TEMP-0290435-0B57B5	低危	1.30+dfsg-6		[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
unixodbc	CVE-2024-1013	低危	2.3.6-0.1		unixODBC: out of bounds stack write due to pointer-to-integer types conversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1013 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2024-03-18 11:15 修改: 2024-03-18 12:38
libpython2-stdlib	CVE-2008-4108	低危	2.7.16-1		python: Generic FAQ wizard moving tool insecure auxiliary /tmp file usage (symlink attack possible) 漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4108 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2008-09-18 17:59 修改: 2017-08-08 01:32
curl	CVE-2022-35252	低危	7.64.0-4+deb10u2	7.64.0-4+deb10u4	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
util-linux	CVE-2022-0563	低危	2.33.1-0.1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
gpg-wks-client	CVE-2019-14855	低危	2.2.12-1+deb10u1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpg-wks-client	CVE-2022-3219	低危	2.2.12-1+deb10u1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
postgresql-client-11	DLA-3316-1	未知	11.16-0+deb10u1	11.19-0+deb10u1	postgresql-11 - security update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
distro-info-data	DLA-3806-1	未知	0.41+deb10u4	0.41+deb10u9	distro-info-data - database update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libbz2-1.0	DLA-3112-1	未知	1.0.6-9.2~deb10u1	1.0.6-9.2~deb10u2	bzip2 - bugfix update 漏洞详情: 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpq5	DLA-3189-1	未知	11.16-0+deb10u1	11.18-0+deb10u1	postgresql-11 - bugfix update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3134-1	未知	2021a-0+deb10u5	2021a-0+deb10u7	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3161-1	未知	2021a-0+deb10u5	2021a-0+deb10u8	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3366-1	未知	2021a-0+deb10u5	2021a-0+deb10u10	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3412-1	未知	2021a-0+deb10u5	2021a-0+deb10u11	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3684-1	未知	2021a-0+deb10u5	2021a-0+deb10u12	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3788-1	未知	2021a-0+deb10u5	2024a-0+deb10u1	tzdata - new timezone database 漏洞详情: 镜像层: sha256:122c2060e9bc532ccc64ab22fcf92a68b586cfdf470cfa55fc2048cb0a18a45e 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpq5	DLA-3316-1	未知	11.16-0+deb10u1	11.19-0+deb10u1	postgresql-11 - security update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debian-archive-keyring	DLA-3482-1	未知	2019.1+deb10u1	2019.1+deb10u2	debian-archive-keyring - security update 漏洞详情: 镜像层: sha256:ad6b69b549193f81b039a1d478bc896f6e460c77c1849a4374ab95f9a3d2cea2 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
distro-info-data	DLA-3171-1	未知	0.41+deb10u4	0.41+deb10u6	distro-info-data - database update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
distro-info-data	DLA-3411-1	未知	0.41+deb10u4	0.41+deb10u7	distro-info-data - database update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
distro-info-data	DLA-3639-1	未知	0.41+deb10u4	0.41+deb10u8	distro-info-data - database update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
postgresql-client-11	DLA-3189-1	未知	11.16-0+deb10u1	11.18-0+deb10u1	postgresql-11 - bugfix update 漏洞详情: 镜像层: sha256:be43739590b285289991c974305d7571b4d2e448e238a421ba4b61b154c238ed 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Python (python-pkg)

低危漏洞:8

中危漏洞:57

高危漏洞:47

严重漏洞:13

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
Flask-AppBuilder	CVE-2024-25128	严重	3.4.5	4.3.11	Flask-AppBuilder vulnerable to incorrect authentication when using auth type OpenID 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25128 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-02-29 01:44 修改: 2024-02-29 13:49
apache-airflow	CVE-2022-38054	严重	2.2.5	2.3.4rc1	Apache Airflow Session Fixation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38054 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-09-02 07:15 修改: 2022-09-09 13:46
apache-airflow	CVE-2022-38649	严重	2.2.5	2.3.0	OS Command Injection in Apache Airflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38649 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-22 10:15 修改: 2023-04-14 15:04
apache-airflow	CVE-2022-40189	严重	2.2.5	2.3.0	OS Command Injection in Apache Airflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40189 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-22 10:15 修改: 2022-11-29 13:57
apache-airflow	CVE-2023-22884	严重	2.2.5	2.5.1	Command Injection in Apache Airflow and Apache Airflow MySQL Provider 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22884 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-01-21 14:15 修改: 2023-11-07 04:07
apache-airflow	CVE-2023-25754	严重	2.2.5	2.6.0b1	Apache Airflow vulnerable to Privilege Context Switching Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25754 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-05-08 12:15 修改: 2024-10-11 21:35
apache-airflow-providers-google	CVE-2023-25691	严重	6.5.0	8.10.0	Apache Airflow Google Provider Improper Input Validation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25691 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-24 12:15 修改: 2023-11-07 04:09
apache-airflow-providers-mysql	CVE-2023-22884	严重	2.2.1	4.0.0	Command Injection in Apache Airflow and Apache Airflow MySQL Provider 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22884 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-01-21 14:15 修改: 2023-11-07 04:07
dask	CVE-2021-42343	严重	2021.3.0	2021.10.0	An issue was discovered in the Dask distributed package before 2021.10 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42343 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2021-10-26 11:15 修改: 2022-07-12 17:42
distributed	GHSA-hwqr-f3v9-hwxr	严重	2021.3.0	2021.10.0	Workers for local Dask clusters mistakenly listened on public interfaces 漏洞详情: https://github.com/advisories/GHSA-hwqr-f3v9-hwxr 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gevent	CVE-2023-41419	严重	21.12.0	23.9.0	python-gevent: privilege escalation via a crafted script to the WSGIServer component 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41419 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-09-25 12:15 修改: 2023-12-08 20:51
httpx	CVE-2021-41945	严重	0.22.0	0.23.0	Encode OSS httpx < 0.23.0 is affected by improper input validation in ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41945 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-04-28 14:15 修改: 2022-10-12 02:40
pyarrow	CVE-2023-47248	严重	6.0.1	14.0.1	PyArrow: Arbitrary code execution when loading a malicious data file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47248 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-11-09 09:15 修改: 2023-11-29 03:15
apache-airflow	CVE-2022-27949	高危	2.2.5	2.3.1	Apache Airflow subject to Exposure of Sensitive Information 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27949 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-14 10:15 修改: 2022-11-16 18:52
apache-airflow	CVE-2022-40127	高危	2.2.5	2.4.0	Apache Airflow vulnerable to OS Command Injection via example DAGs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40127 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-14 10:15 修改: 2022-11-16 18:53
apache-airflow	CVE-2022-41672	高危	2.2.5	2.4.1rc1	Apache Airflow may allow authenticated users who have been deactivated to continue using the UI or API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41672 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-10-07 07:15 修改: 2023-02-11 17:15
apache-airflow	CVE-2022-46651	高危	2.2.5	2.6.3	Apache Airflow information disclosure vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46651 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-12 10:15 修改: 2023-07-20 15:34
apache-airflow	CVE-2023-22887	高危	2.2.5	2.6.3	Apache Airflow Path Traversal vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22887 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-12 10:15 修改: 2023-07-20 15:38
apache-airflow	CVE-2023-22888	高危	2.2.5	2.6.3	Apache Airflow Improper Input Validation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22888 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-12 10:15 修改: 2023-07-20 15:42
apache-airflow	CVE-2023-35908	高危	2.2.5	2.6.3	Apache Airflow Incorrect Authorization vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-35908 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-12 10:15 修改: 2023-07-20 17:14
apache-airflow	CVE-2023-36543	高危	2.2.5	2.6.3	Apache Airflow Improper Input Validation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36543 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-12 10:15 修改: 2023-07-31 17:47
apache-airflow	CVE-2023-37379	高危	2.2.5	2.7.0b1	Apache Airflow denial of service vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37379 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-23 16:15 修改: 2023-08-29 16:21
apache-airflow	CVE-2023-39508	高危	2.2.5	2.6.0b1	Apache Airflow Execution with Unnecessary Privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39508 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-05 07:15 修改: 2024-10-02 17:35
apache-airflow	CVE-2023-40273	高危	2.2.5	2.7.0rc2	Apache Airflow Session Fixation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40273 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-23 16:15 修改: 2024-09-27 21:35
apache-airflow	CVE-2023-40712	高危	2.2.5	2.7.1	Apache Airflow information exposure vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40712 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-09-12 12:15 修改: 2023-09-13 03:50
apache-airflow	CVE-2023-42781	高危	2.2.5	2.7.3	Apache Airflow vulnerable to Exposure of Sensitive Information to an Unauthorized Actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42781 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-11-12 14:15 修改: 2023-11-20 19:33
apache-airflow	CVE-2023-46215	高危	2.2.5	2.7.0	Apache Airflow Celery provider Insertion of Sensitive Information into Log File vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46215 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-28 08:15 修改: 2023-11-08 00:45
apache-airflow	CVE-2023-50943	高危	2.2.5	2.8.1rc1	Apache Airflow: pickle deserialization vulnerability in XComs 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50943 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-01-24 13:15 修改: 2024-01-30 22:57
apache-airflow	CVE-2023-50944	高危	2.2.5	2.8.1rc1	Apache Airflow: Bypass permission verification to read code of other dags 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50944 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-01-24 13:15 修改: 2024-01-30 22:58
apache-airflow	CVE-2024-45034	高危	2.2.5	2.10.1	Apache Airflow vulnerable to Execution with Unnecessary Privileges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45034 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-09-07 08:15 修改: 2024-09-09 14:35
apache-airflow-providers-amazon	CVE-2023-25956	高危	3.0.0	7.2.1	Apache Airflow AWS Provider Generates Error Message Containing Sensitive Information 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25956 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-24 12:15 修改: 2024-10-23 17:35
apache-airflow-providers-docker	CVE-2022-38362	高危	2.5.0	3.0.0	Remote code execution in Apache Airflow Docker's Provider 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38362 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-08-16 14:15 修改: 2022-08-17 12:20
Werkzeug	CVE-2023-25577	高危	1.0.1	2.2.3	python-werkzeug: high resource usage when parsing multipart form data with many fields 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25577 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-14 20:15 修改: 2023-08-18 14:15
apache-airflow-providers-google	CVE-2023-25692	高危	6.5.0	8.10.0	Apache Airflow Google Provider Improper Input Validation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25692 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-24 12:15 修改: 2023-11-07 04:09
Werkzeug	CVE-2024-34069	高危	1.0.1	3.0.3	python-werkzeug: user may execute code on a developer's machine 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34069 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-05-06 15:15 修改: 2024-06-14 13:15
apache-airflow-providers-odbc	CVE-2023-34395	高危	2.0.2	4.0.0	Apache Airflow ODBC Provider Argument Injection vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34395 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-27 12:15 修改: 2024-10-07 19:36
celery	CVE-2021-23727	高危	5.1.2	5.2.2	celery: stored command injection vulnerability may allow privileges escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23727 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2021-12-29 17:15 修改: 2023-11-07 03:30
certifi	CVE-2023-37920	高危	2020.12.5	2023.7.22	python-certifi: Removal of e-Tugra root certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-25 21:15 修改: 2023-08-12 06:16
cryptography	CVE-2023-0286	高危	3.4.8	39.0.1	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
cryptography	CVE-2023-50782	高危	3.4.8	42.0.0	python-cryptography: Bleichenbacher timing oracle attack against RSA decryption - incomplete fix for CVE-2020-25659 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50782 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-02-05 21:15 修改: 2024-09-27 19:15
Flask	CVE-2023-30861	高危	1.1.4	2.3.2, 2.2.5	flask: Possible disclosure of permanent session cookie due to missing Vary: Cookie header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30861 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-05-02 18:15 修改: 2023-08-20 21:15
Authlib	CVE-2024-37568	高危	0.15.5	1.3.1	lepture Authlib before 1.3.1 has algorithm confusion with asymmetric p ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37568 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-06-09 19:15 修改: 2024-08-15 16:35
flower	CVE-2022-30034	高危	1.0.0	1.2.0	Flower OAuth authentication bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30034 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-06-02 14:15 修改: 2024-02-13 17:21
future	CVE-2022-40899	高危	0.18.2	0.18.3	python-future: remote attackers can cause denial of service via crafted Set-Cookie header from malicious web server 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40899 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-12-23 00:15 修改: 2023-01-23 18:57
Flask-AppBuilder	CVE-2023-29005	高危	3.4.5	4.3.0	Flask-AppBuilder Has No Rate Limiting on Login AUTH DB 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29005 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-04-10 21:15 修改: 2023-04-18 17:02
grpcio	CVE-2023-1428	高危	1.45.0	1.53.0	gRPC: Reachable Assertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1428 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-09 11:15 修改: 2023-06-15 22:17
grpcio	CVE-2023-32731	高危	1.45.0	1.53.0	gRPC: sensitive information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32731 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-09 11:15 修改: 2023-06-15 22:18
grpcio	CVE-2023-33953	高危	1.45.0	1.53.2, 1.54.3, 1.55.2, 1.56.2	gRPC: hpack table accounting errors can lead to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33953 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-09 13:15 修改: 2023-08-17 14:15
gunicorn	CVE-2024-1135	高危	20.1.0	22.0.0	python-gunicorn: HTTP Request Smuggling due to improper validation of Transfer-Encoding headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1135 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-04-16 00:15 修改: 2024-12-20 07:15
Mako	CVE-2022-40023	高危	1.1.6	1.2.2	python-mako: REDoS in Lexer class 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40023 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-09-07 13:15 修改: 2023-08-08 14:22
mysql-connector-python	CVE-2024-21272	高危	8.0.28	9.1.0	MySQL Connector/Python connector takeover vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21272 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-10-15 20:15 修改: 2024-10-21 16:14
protobuf	CVE-2022-1941	高危	3.19.4	3.18.3, 3.19.5, 3.20.2, 4.21.6	protobuf: message parsing vulnerability in ProtocolBuffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1941 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-09-22 15:15 修改: 2024-08-01 13:42
py	CVE-2022-42969	高危	1.11.0		py: ReDoS in py library when used with subversion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42969 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-10-16 06:15 修改: 2024-08-03 14:15
PyJWT	CVE-2022-29217	高危	1.7.1	2.4.0	python-jwt: Key confusion through non-blocklisted public key formats 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29217 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-05-24 15:15 修改: 2023-11-07 03:45
setuptools	CVE-2022-40897	高危	57.5.0	65.5.1	pypa-setuptools: Regular Expression Denial of Service (ReDoS) in package_index.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40897 镜像层: sha256:e30df7d241f6e0435d003652dab5d7804dcbd5822a7deafbc337e85227bd0fcc 发布日期: 2022-12-23 00:15 修改: 2024-10-29 15:35
setuptools	CVE-2024-6345	高危	57.5.0	70.0.0	pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345 镜像层: sha256:e30df7d241f6e0435d003652dab5d7804dcbd5822a7deafbc337e85227bd0fcc 发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
tornado	CVE-2024-52804	高危	6.1	6.4.2	python-tornado: Tornado has HTTP cookie parsing DoS vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52804 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-11-22 16:15 修改: 2024-11-22 16:15
urllib3	CVE-2023-43804	高危	1.26.9	2.0.6, 1.26.17	python-urllib3: Cookie request header isn't stripped during cross-origin redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43804 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-04 17:15 修改: 2024-12-13 14:15
virtualenv	CVE-2024-53899	高危	20.14.0	20.26.6	virtualenv: potential command injection via virtual environment activation scripts 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-53899 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-11-24 16:15 修改: 2024-11-26 18:23
wheel	CVE-2022-40898	高危	0.37.0	0.38.1	python-wheel: remote attackers can cause denial of service via attacker controlled input to wheel cli 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40898 镜像层: sha256:e30df7d241f6e0435d003652dab5d7804dcbd5822a7deafbc337e85227bd0fcc 发布日期: 2022-12-23 00:15 修改: 2022-12-30 22:15
Flask-AppBuilder	CVE-2024-45314	中危	3.4.5	4.5.1	Flask-AppBuilder's login form allows browser to cache sensitive fields 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45314 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-09-04 16:15 修改: 2024-09-12 16:39
Pygments	CVE-2022-40896	中危	2.11.2	2.15.0	pygments: ReDoS in pygments 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40896 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-07-19 15:15 修改: 2024-03-28 03:15
Flask-Caching	CVE-2021-33026	中危	1.10.1		The Flask-Caching extension through 1.10.1 for Flask relies on Pickle ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33026 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2021-05-13 23:15 修改: 2024-08-04 00:15
apache-airflow-providers-imap	CVE-2023-39441	中危	2.2.1	3.3.0	Apache Airflow missing Certificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39441 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-23 16:15 修改: 2023-08-29 15:48
Jinja2	CVE-2024-22195	中危	2.11.3	3.1.3	jinja2: HTML attribute injection when passing user input as keys to xmlattr filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22195 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-01-11 03:15 修改: 2024-01-27 03:15
Werkzeug	CVE-2023-46136	中危	1.0.1	3.0.1, 2.3.8	python-werkzeug: high resource consumption leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46136 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-25 18:17 修改: 2024-01-10 18:58
apache-airflow-providers-odbc	CVE-2023-35798	中危	2.0.2	4.0.0	Apache Airflow ODBC Provider, Apache Airflow MSSQL Provider Improper Input Validation vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-35798 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-27 12:15 修改: 2023-07-06 13:50
azure-identity	CVE-2024-35255	中危	1.8.0	1.16.1	azure-identity: Azure Identity Libraries Elevation of Privilege Vulnerability in github.com/Azure/azure-sdk-for-go/sdk/azidentity 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35255 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-06-11 17:16 修改: 2024-06-20 16:31
azure-storage-blob	CVE-2022-30187	中危	12.8.1	12.13.0	Microsoft: CBC Padding Oracle in Azure Blob Storage Encryption Library 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30187 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-07-12 23:15 修改: 2023-08-08 14:21
Werkzeug	CVE-2024-49766	中危	1.0.1	3.0.6	werkzeug: python-werkzeug: Werkzeug safe_join not safe on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-49766 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-10-25 20:15 修改: 2024-10-28 13:58
Werkzeug	CVE-2024-49767	中危	1.0.1	3.0.6	werkzeug: python-werkzeug: Werkzeug possible resource exhaustion when parsing file data in forms 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-49767 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-10-25 20:15 修改: 2025-01-03 12:15
certifi	CVE-2022-23491	中危	2020.12.5	2022.12.07	python-certifi: untrusted root certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23491 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-12-07 22:15 修改: 2023-03-24 18:12
Jinja2	CVE-2024-34064	中危	2.11.3	3.1.4	jinja2: accepts keys containing non-attribute characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34064 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-05-06 15:15 修改: 2024-06-10 18:15
Jinja2	CVE-2024-56326	中危	2.11.3	3.1.5	jinja2: Jinja has a sandbox breakout through indirect reference to format method 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56326 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-12-23 16:15 修改: 2024-12-27 18:15
cryptography	CVE-2023-23931	中危	3.4.8	39.0.1	python-cryptography: memory corruption via immutable objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23931 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-07 21:15 修改: 2024-09-05 16:09
cryptography	CVE-2023-49083	中危	3.4.8	41.0.6	python-cryptography: NULL-dereference when loading PKCS7 certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49083 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-11-29 19:15 修改: 2024-09-05 16:09
cryptography	CVE-2024-0727	中危	3.4.8	42.0.2	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
apache-airflow	CVE-2022-38170	中危	2.2.5	2.3.4	Apache Airflow exposes arbitrary file content 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38170 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-09-02 07:15 修改: 2023-08-08 14:21
apache-airflow	CVE-2022-40954	中危	2.2.5	2.3.0	OS Command Injection in Apache Airflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40954 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-22 10:15 修改: 2022-11-28 17:51
dnspython	CVE-2023-29483	中危	2.2.1	2.6.1	dnspython: denial of service in stub resolver 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29483 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-04-11 14:15 修改: 2024-08-27 19:35
eventlet	CVE-2023-29483	中危	0.33.0	0.35.2	dnspython: denial of service in stub resolver 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29483 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-04-11 14:15 修改: 2024-08-27 19:35
apache-airflow	CVE-2022-43982	中危	2.2.5	2.4.2rc1	Apache Airflow Cross-site Scripting vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43982 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-02 12:15 修改: 2022-11-03 13:52
apache-airflow	CVE-2022-43985	中危	2.2.5	2.4.2rc1	Apache Airflow Open Redirect vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43985 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-02 12:15 修改: 2022-11-03 13:52
apache-airflow	CVE-2022-45402	中危	2.2.5	2.4.3	Apache Airflow Contains Open Redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45402 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-11-15 09:15 修改: 2022-11-17 21:24
apache-airflow	CVE-2023-25695	中危	2.2.5	2.5.2rc1	Sensitive Information in Error Messages in Apache Airflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25695 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-03-15 10:15 修改: 2023-11-07 04:09
apache-airflow	CVE-2023-29247	中危	2.2.5	2.6.0	Apache Airflow vulnerable to stored Cross-site Scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29247 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-05-08 10:15 修改: 2023-05-11 23:24
apache-airflow	CVE-2023-39441	中危	2.2.5	2.7.0	Apache Airflow missing Certificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39441 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-08-23 16:15 修改: 2023-08-29 15:48
grpcio	CVE-2023-32732	中危	1.45.0	1.53.0	gRPC: denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32732 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-09 11:15 修改: 2023-08-02 16:43
apache-airflow	CVE-2023-40611	中危	2.2.5	2.7.1	Apache Airflow Incorrect Authorization vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40611 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-09-12 12:15 修改: 2024-01-16 14:14
apache-airflow	CVE-2023-42663	中危	2.2.5	2.7.2	Apache Airflow vulnerable to sensitive information exposure 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42663 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-14 10:15 修改: 2024-01-12 22:04
idna	CVE-2024-3651	中危	3.3	3.7	python-idna: potential DoS via resource consumption via specially crafted inputs to idna.encode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3651 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-07-07 18:15 修改: 2024-07-11 14:58
lxml	CVE-2022-2309	中危	4.8.0	4.9.1	lxml: NULL Pointer Dereference in lxml 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2309 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-07-05 10:15 修改: 2023-11-07 03:46
apache-airflow	CVE-2023-42780	中危	2.2.5	2.7.2	Apache Airflow vulnerable to sensitive information exposure when users list warnings for all DAGs 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42780 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-14 10:15 修改: 2023-10-18 18:47
numpy	CVE-2021-33430	中危	1.19.5	1.21	numpy: buffer overflow in the PyArray_NewFromDescr_int() in ctors.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33430 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2021-12-17 19:15 修改: 2024-08-04 00:15
numpy	CVE-2021-34141	中危	1.19.5	1.22	numpy: incomplete string comparison in the numpy.core component 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34141 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2021-12-17 19:15 修改: 2023-02-24 15:35
oauthlib	CVE-2022-36087	中危	3.2.0	3.2.2	python-oauthlib: DoS when attacker provides malicious IPV6 URI 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36087 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-09-09 21:15 修改: 2023-11-07 03:49
paramiko	CVE-2023-48795	中危	2.10.3	3.4.0	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
pip	CVE-2023-5752	中危	21.2.4	23.3	pip: Mercurial configuration injectable in repo revision when installing via pip 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752 镜像层: sha256:e30df7d241f6e0435d003652dab5d7804dcbd5822a7deafbc337e85227bd0fcc 发布日期: 2023-10-25 18:17 修改: 2024-06-10 18:15
pip	CVE-2023-5752	中危	21.3.1	23.3	pip: Mercurial configuration injectable in repo revision when installing via pip 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-25 18:17 修改: 2024-06-10 18:15
apache-airflow	CVE-2023-42792	中危	2.2.5	2.7.2	Apache Airflow vulnerable to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42792 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-14 10:15 修改: 2023-12-21 15:15
apache-airflow	CVE-2023-47037	中危	2.2.5	2.7.3	Apache Airflow allows authenticated and DAG-view authorized users to modify some DAG run detail values when submitting notes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47037 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-11-12 14:15 修改: 2023-11-20 19:31
apache-airflow	CVE-2023-48291	中危	2.2.5	2.8.0	Apache Airflow vulnerable to Exposure of Resource to Wrong Sphere 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48291 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-12-21 10:15 修改: 2023-12-28 13:52
requests	CVE-2023-32681	中危	2.27.1	2.31.0	python-requests: Unintended leak of Proxy-Authorization header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32681 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-05-26 18:15 修改: 2023-09-17 09:15
requests	CVE-2024-35195	中危	2.27.1	2.32.0	requests: subsequent requests to the same host ignore cert verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-05-20 21:15 修改: 2024-06-10 17:16
apache-airflow	CVE-2023-50783	中危	2.2.5	2.8.0	Apache Airflow Improper Access Control vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50783 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-12-21 10:15 修改: 2023-12-28 13:45
apache-airflow	CVE-2024-26280	中危	2.2.5	2.8.2	Apache Airflow: Incorrect Default Permissions in audit logs for Ops and Viewers users 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26280 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-03-01 11:15 修改: 2024-11-01 18:35
apache-airflow	CVE-2024-27906	中危	2.2.5	2.8.2	Apache Airflow: DAG Code and Import Error Permissions Ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27906 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-02-29 11:15 修改: 2024-11-25 16:15
tornado	CVE-2023-28370	中危	6.1	6.3.2	python-tornado: open redirect vulnerability in StaticFileHandler under certain configurations 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28370 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-05-25 10:15 修改: 2025-01-16 16:15
tornado	GHSA-753j-mpmx-qq6g	中危	6.1	6.4.1	Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') in tornado 漏洞详情: https://github.com/advisories/GHSA-753j-mpmx-qq6g 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tornado	GHSA-qppv-j76h-2rpx	中危	6.1	6.3.3	Tornado vulnerable to HTTP request smuggling via improper parsing of `Content-Length` fields and chunk lengths 漏洞详情: https://github.com/advisories/GHSA-qppv-j76h-2rpx 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tornado	GHSA-w235-7p84-xx57	中危	6.1	6.4.1	Tornado has a CRLF injection in CurlAsyncHTTPClient headers 漏洞详情: https://github.com/advisories/GHSA-w235-7p84-xx57 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
apache-airflow	CVE-2024-39863	中危	2.2.5	2.9.3	Apache Airflow Potential Cross-site Scripting Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39863 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-07-17 08:15 修改: 2024-08-01 13:55
urllib3	CVE-2023-45803	中危	1.26.9	2.0.7, 1.26.18	urllib3: Request body not stripped after redirect from 303 status changes request method to GET 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45803 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-10-17 20:15 修改: 2023-11-03 22:15
urllib3	CVE-2024-37891	中危	1.26.9	1.26.19, 2.2.2	urllib3: proxy-authorization request header is not stripped during cross-origin redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37891 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
apache-airflow	CVE-2024-41937	中危	2.2.5	2.10.0	Apache Airflow Cross-site Scripting Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41937 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-08-21 16:15 修改: 2024-08-23 16:21
Flask-AppBuilder	CVE-2023-34110	中危	3.4.5	4.3.2	Flask-AppBuilder vulnerable to possible disclosure of sensitive information on user error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34110 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-06-22 23:15 修改: 2023-07-03 19:00
zipp	CVE-2024-5569	中危	3.6.0	3.19.1	github.com/jaraco/zipp: Denial of Service (infinite loop) via crafted zip file in jaraco/zipp 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5569 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-07-09 00:15 修改: 2024-07-09 18:19
apache-airflow	CVE-2024-50378	低危	2.2.5	2.10.3	Apache Airflow vulnerable to Insertion of Sensitive Information Into Sent Data 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50378 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-11-08 15:15 修改: 2024-11-08 19:01
Werkzeug	CVE-2023-23934	低危	1.0.1	2.2.3	python-werkzeug: cookie prefixed with = can shadow unprefixed cookie 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23934 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2023-02-14 20:15 修改: 2023-08-18 14:15
Flask-AppBuilder	CVE-2022-31177	低危	3.4.5	4.1.3	Flask-AppBuilder before v4.1.3 allows inference of sensitive information through query strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31177 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2022-08-01 19:15 修改: 2023-07-24 13:08
apache-airflow-providers-ftp	CVE-2024-29733	低危	2.1.0	3.7.0	Improper Certificate Validation vulnerability in Apache Airflow FTP Provider 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29733 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-04-21 18:15 修改: 2024-07-03 01:52
apache-airflow	CVE-2024-25142	低危	2.2.5	2.9.2	Apache Airflow does not return the "Cache-Control" header for dynamic content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25142 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 2024-06-14 09:15 修改: 2024-12-11 15:37
cryptography	GHSA-5cpq-8wj7-hf2v	低危	3.4.8	41.0.0	Vulnerable OpenSSL included in cryptography wheels 漏洞详情: https://github.com/advisories/GHSA-5cpq-8wj7-hf2v 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cryptography	GHSA-jm77-qphf-c4w8	低危	3.4.8	41.0.3	pyca/cryptography's wheels include vulnerable OpenSSL 漏洞详情: https://github.com/advisories/GHSA-jm77-qphf-c4w8 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cryptography	GHSA-v8gr-m533-ghj9	低危	3.4.8	41.0.4	Vulnerable OpenSSL included in cryptography wheels 漏洞详情: https://github.com/advisories/GHSA-v8gr-m533-ghj9 镜像层: sha256:5c55a38edd216b70cebb27527eca9a18991d1bf91a498e095b00b28eb23d0da8 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00