docker.io/apache/kyuubi:1.10.0 linux/amd64

docker.io/apache/kyuubi:1.10.0 - Trivy安全扫描结果 扫描时间: 2025-02-08 15:41
全部漏洞信息
低危漏洞:59 中危漏洞:31 高危漏洞:12 严重漏洞:1

系统OS: ubuntu 20.04 扫描引擎: Trivy 扫描时间: 2025-02-08 15:41

docker.io/apache/kyuubi:1.10.0 (ubuntu 20.04) (ubuntu)
低危漏洞:56 中危漏洞:18 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
krb5-user CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libexpat1 CVE-2024-50602 中危 2.2.9-1ubuntu0.7 2.2.9-1ubuntu0.8 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libfreetype6 CVE-2025-23022 中危 2.10.1-2ubuntu0.3 freetype: signed integer overflow in cf2_doFlex

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23022

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2025-01-10 15:15 修改: 2025-01-16 21:12
libgssapi-krb5-2 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssrpc4 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkadm5clnt-mit11 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkadm5srv-mit11 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkdb5-9 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0 CVE-2024-26462 中危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libpam-modules CVE-2024-10041 中危 1.3.1-5ubuntu4.7 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin CVE-2024-10041 中危 1.3.1-5ubuntu4.7 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime CVE-2024-10041 中危 1.3.1-5ubuntu4.7 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g CVE-2024-10041 中危 1.3.1-5ubuntu4.7 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
login CVE-2024-56433 中危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd CVE-2024-56433 中危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
wget CVE-2021-31879 中危 1.20.3-1ubuntu2.1 wget: authorization header disclosure on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2021-04-29 05:15 修改: 2022-05-13 20:52
libcurl4 CVE-2024-11053 低危 7.68.0-1ubuntu2.24 7.68.0-1ubuntu2.25 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
curl CVE-2024-11053 低危 7.68.0-1ubuntu2.24 7.68.0-1ubuntu2.25 curl: curl netrc password leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-12-11 08:15 修改: 2024-12-15 17:15
dirmngr CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgcrypt20 CVE-2024-2236 低危 1.8.5-5ubuntu1.1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
gnupg CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssapi-krb5-2 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssapi-krb5-2 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gnupg-l10n CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssrpc4 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssrpc4 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gnupg-utils CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libk5crypto3 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkadm5clnt-mit11 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkadm5clnt-mit11 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg-agent CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkadm5srv-mit11 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkadm5srv-mit11 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg-wks-client CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkdb5-9 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkdb5-9 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg-wks-server CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5-3 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpgconf CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5support0 CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0 CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libncurses6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libncurses6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libncursesw6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libncursesw6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
gpgsm CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgv CVE-2022-3219 低危 2.2.19-3ubuntu2.2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
coreutils CVE-2016-2781 低危 8.30-3ubuntu2 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
krb5-user CVE-2024-26458 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libpcre2-8-0 CVE-2022-41409 低危 10.34-7ubuntu0.1 pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libpcre3 CVE-2017-11164 低危 2:8.39-12ubuntu0.1 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libsystemd0 CVE-2023-26604 低危 245.4-4ubuntu3.24 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libsystemd0 CVE-2023-7008 低危 245.4-4ubuntu3.24 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
libtinfo6 CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
libtinfo6 CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libudev1 CVE-2023-26604 低危 245.4-4ubuntu3.24 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
libudev1 CVE-2023-7008 低危 245.4-4ubuntu3.24 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
locales CVE-2016-20013 低危 2.31-0ubuntu9.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:7591c250b40d91c3c4705fa740487870abb3137698e70c65e263ebee856b72f9

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
krb5-user CVE-2024-26461 低危 1.17-6ubuntu4.7 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:47c024bcac16c5413564d7fa5e64c3a2b5d4691ace9195f1354583181c89fe6a

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
login CVE-2013-4235 低危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: TOCTOU race conditions by copying and removing directory trees

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
login CVE-2023-29383 低危 1:4.8.1-1ubuntu5.20.04.5 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
ncurses-base CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
ncurses-base CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin CVE-2023-45918 低危 6.2-0ubuntu2.1 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15
ncurses-bin CVE-2023-50495 低危 6.2-0ubuntu2.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libc-bin CVE-2016-20013 低危 2.31-0ubuntu9.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
passwd CVE-2013-4235 低危 1:4.8.1-1ubuntu5.20.04.5 shadow-utils: TOCTOU race conditions by copying and removing directory trees

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
passwd CVE-2023-29383 低危 1:4.8.1-1ubuntu5.20.04.5 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
libc6 CVE-2016-20013 低危 2.31-0ubuntu9.16

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013

镜像层: sha256:fffe76c64ef2dee2d80a8bb3ad13d65d596d04a45510b1956a976a69215dae92

发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
Java (jar)
低危漏洞:3 中危漏洞:13 高危漏洞:12 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
org.apache.avro:avro CVE-2024-47561 严重 1.7.7 1.11.4 apache-avro: Schema parsing may trigger Remote Code Execution (RCE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
com.google.protobuf:protobuf-java CVE-2021-22570 高危 3.7.1 3.15.0 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java CVE-2022-3509 高危 3.7.1 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Textformat parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java CVE-2022-3510 高危 3.7.1 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Message-Type Extensions parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java CVE-2024-7254 高危 3.7.1 3.25.5, 4.27.5, 4.28.2 protobuf: StackOverflow vulnerability in Protocol Buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-09-19 01:15 修改: 2024-12-13 14:15
com.nimbusds:nimbus-jose-jwt CVE-2023-52428 高危 9.8.1 9.37.2 nimbus-jose-jwt: large JWE p2c header value causes Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
commons-io:commons-io CVE-2024-47554 高危 2.8.0 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-10-03 12:15 修改: 2024-12-04 15:15
dnsjava:dnsjava CVE-2024-25638 高危 2.1.7 3.6.0 dnsjava: Improper response validation allowing DNSSEC bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
net.minidev:json-smart CVE-2021-31684 高危 1.3.2 1.3.3, 2.4.4 json-smart: Denial of Service in JSONParserByteArray function

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31684

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2021-06-01 20:15 修改: 2024-06-21 19:15
net.minidev:json-smart CVE-2023-1370 高危 1.3.2 2.4.9 json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
com.google.protobuf:protobuf-java CVE-2021-22569 高危 3.7.1 3.16.1, 3.18.2, 3.19.2 protobuf-java: potential DoS in the parsing procedure for binary data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
org.apache.avro:avro CVE-2023-39410 高危 1.7.7 1.11.3 apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.commons:commons-compress CVE-2024-25710 高危 1.21 1.26.0 commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
io.netty:netty-common CVE-2024-47535 中危 4.1.108.Final 4.1.115 netty: Denial of Service attack on windows app using Netty

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-11-12 16:15 修改: 2024-11-13 17:01
com.squareup.okio:okio CVE-2023-3635 中危 1.15.0 3.4.0, 1.17.6 okio: GzipSource class improper exception handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
com.squareup.okio:okio CVE-2023-3635 中危 1.17.2 3.4.0, 1.17.6 okio: GzipSource class improper exception handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
com.squareup.okio:okio CVE-2023-3635 中危 1.17.2 3.4.0, 1.17.6 okio: GzipSource class improper exception handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
com.google.protobuf:protobuf-java CVE-2022-3171 中危 3.7.1 3.21.7, 3.20.3, 3.19.6, 3.16.3 protobuf-java: timeout in parser leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.google.guava:guava CVE-2023-2976 中危 30.1.1-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
org.apache.commons:commons-compress CVE-2024-26308 中危 1.21 1.26.0 commons-compress: OutOfMemoryError unpacking broken Pack200 file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26308

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-02-19 09:15 修改: 2024-03-21 19:54
org.apache.commons:commons-configuration2 CVE-2024-29131 中危 2.8.0 2.10.1 commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-03-21 09:15 修改: 2024-12-13 14:15
org.apache.commons:commons-configuration2 CVE-2024-29133 中危 2.8.0 2.10.1 commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.apache.kafka:kafka-clients CVE-2024-31141 中危 3.5.2 3.7.1 kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31141

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-11-19 09:15 修改: 2024-11-19 21:57
org.eclipse.jetty:jetty-http CVE-2023-40167 中危 9.4.51.v20230217 9.4.52, 10.0.16, 11.0.16, 12.0.1 jetty: Improper validation of HTTP/1 content-length

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.4.51.v20230217 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.4.56.v20240826 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
com.google.guava:guava CVE-2020-8908 低危 30.1.1-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
org.apache.hadoop:hadoop-common CVE-2024-23454 低危 3.3.6 3.4.0 Apache Hadoop: Temporary File Local Information Disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.eclipse.jetty:jetty-xml GHSA-58qw-p7qm-5rvh 低危 9.4.51.v20230217 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations

漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh

镜像层: sha256:df971dc300e569131ad55a24acbb48d5dab7fc456503e2f1f00256454f4b2320

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00