docker.io/apache/shardingsphere-proxy:5.5.1 linux/amd64

docker.io/apache/shardingsphere-proxy:5.5.1 - Trivy安全扫描结果扫描时间: 2024-12-09 15:13

全部漏洞信息

低危漏洞:34

中危漏洞:13

高危漏洞:3

严重漏洞:0

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2024-12-09 15:13

docker.io/apache/shardingsphere-proxy:5.5.1 (ubuntu 24.04) (ubuntu)

低危漏洞:34

中危漏洞:13

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libgssapi-krb5-2	CVE-2024-26462	中危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26462	中危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26462	中危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-26462	中危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libpam-modules	CVE-2024-10041	中危	1.5.3-5ubuntu5.1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-10-23 14:15 修改: 2024-11-25 00:15
libpam-modules	CVE-2024-10963	中危	1.5.3-5ubuntu5.1		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin	CVE-2024-10041	中危	1.5.3-5ubuntu5.1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-10-23 14:15 修改: 2024-11-25 00:15
libpam-modules-bin	CVE-2024-10963	中危	1.5.3-5ubuntu5.1		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime	CVE-2024-10041	中危	1.5.3-5ubuntu5.1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-10-23 14:15 修改: 2024-11-25 00:15
libpam-runtime	CVE-2024-10963	中危	1.5.3-5ubuntu5.1		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g	CVE-2024-10041	中危	1.5.3-5ubuntu5.1		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-10-23 14:15 修改: 2024-11-25 00:15
libpam0g	CVE-2024-10963	中危	1.5.3-5ubuntu5.1		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
wget	CVE-2021-31879	中危	1.21.4-1ubuntu4.1		wget: authorization header disclosure on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2021-04-29 05:15 修改: 2022-05-13 20:52
libctf-nobfd0	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libctf-nobfd0	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libctf0	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libctf0	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libcurl4t64	CVE-2024-9681	低危	8.5.0-2ubuntu10.4	8.5.0-2ubuntu10.5	curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-11-06 08:15 修改: 2024-11-25 19:52
libgcrypt20	CVE-2024-2236	低危	1.10.3-2build1		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libgprofng0	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libgprofng0	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
binutils	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libgssapi-krb5-2	CVE-2024-26458	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2	CVE-2024-26461	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
binutils	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libk5crypto3	CVE-2024-26458	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26461	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
binutils-common	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libkrb5-3	CVE-2024-26458	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26461	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
binutils-common	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libkrb5support0	CVE-2024-26458	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-26461	低危	1.20.1-6ubuntu2.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
binutils-x86-64-linux-gnu	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
binutils-x86-64-linux-gnu	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
coreutils	CVE-2016-2781	低危	9.4-3ubuntu6		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
curl	CVE-2024-9681	低危	8.5.0-2ubuntu10.4	8.5.0-2ubuntu10.5	curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-11-06 08:15 修改: 2024-11-25 19:52
gpgv	CVE-2022-3219	低危	2.4.4-2ubuntu17		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libbinutils	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libbinutils	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libc-bin	CVE-2016-20013	低危	2.39-0ubuntu8.3		漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libsframe1	CVE-2017-13716	低危	2.42-4ubuntu2.3		binutils: Memory leak with the C++ symbol demangler routine in libiberty 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03
libsframe1	CVE-2018-20657	低危	2.42-4ubuntu2.3		libiberty: Memory leak in demangle_template function resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15
libssl3t64	CVE-2024-41996	低危	3.0.13-0ubuntu3.4		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
locales	CVE-2016-20013	低危	2.39-0ubuntu8.3		漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
openssl	CVE-2024-41996	低危	3.0.13-0ubuntu3.4		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:feac105a822a9538082c406716e394f8bc9bec77d4a14431133f2dabc53fa5a1 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libc6	CVE-2016-20013	低危	2.39-0ubuntu8.3		漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:a46a5fb872b554648d9d0262f302b2c1ded46eeb1ef4dc727ecc5274605937af 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43

Java (jar)

低危漏洞:0

中危漏洞:0

高危漏洞:3

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
com.google.protobuf:protobuf-java	CVE-2024-7254	高危	3.21.12	3.25.5, 4.27.5, 4.28.2	protobuf: StackOverflow vulnerability in Protocol Buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254 镜像层: sha256:e9b47deb4666e22fd783f533b60fbeea783f60fa4c0b88301107e4cb931c73e7 发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
commons-io:commons-io	CVE-2024-47554	高危	2.11.0	2.14.0	apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554 镜像层: sha256:e9b47deb4666e22fd783f533b60fbeea783f60fa4c0b88301107e4cb931c73e7 发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
io.netty:netty-common	CVE-2024-47535	高危	4.1.112.Final	4.1.115	netty: Denial of Service attack on windows app using Netty 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535 镜像层: sha256:e9b47deb4666e22fd783f533b60fbeea783f60fa4c0b88301107e4cb931c73e7 发布日期: 2024-11-12 16:15 修改: 2024-11-13 17:01

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

com.google.protobuf:protobuf-java

CVE-2024-7254

高危

3.21.12

3.25.5, 4.27.5, 4.28.2

protobuf: StackOverflow vulnerability in Protocol Buffers