docker.io/casbin/casdoor-all-in-one:latest linux/amd64

docker.io/casbin/casdoor-all-in-one:latest - Trivy安全扫描结果扫描时间: 2025-02-20 19:32

全部漏洞信息

低危漏洞:84

中危漏洞:44

高危漏洞:16

严重漏洞:3

系统OS: debian 12.9 扫描引擎: Trivy 扫描时间: 2025-02-20 19:32

docker.io/casbin/casdoor-all-in-one:latest (debian 12.9) (debian)

低危漏洞:83

中危漏洞:29

高危漏洞:9

严重漏洞:1

软件包	漏洞	安全状态	安装版本	漏洞信息
zlib1g	CVE-2023-45853	严重	1:1.2.13.dfsg-1	zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
libgssapi-krb5-2	CVE-2024-26462	高危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26462	高危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26462	高危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-26462	高危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libperl5.36	CVE-2023-31484	高危	5.36.0-7+deb12u1	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl	CVE-2023-31484	高危	5.36.0-7+deb12u1	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-base	CVE-2023-31484	高危	5.36.0-7+deb12u1	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-modules-5.36	CVE-2023-31484	高危	5.36.0-7+deb12u1	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
krb5-locales	CVE-2024-26462	高危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libncursesw6	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libpam-modules	CVE-2024-10041	中危	1.5.2-6+deb12u1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules	CVE-2024-22365	中危	1.5.2-6+deb12u1	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-modules-bin	CVE-2024-10041	中危	1.5.2-6+deb12u1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin	CVE-2024-22365	中危	1.5.2-6+deb12u1	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-runtime	CVE-2024-10041	中危	1.5.2-6+deb12u1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime	CVE-2024-22365	中危	1.5.2-6+deb12u1	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam0g	CVE-2024-10041	中危	1.5.2-6+deb12u1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g	CVE-2024-22365	中危	1.5.2-6+deb12u1	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libfcgi0ldbl	CVE-2025-23016	中危	2.4.2-2	FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (an ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23016 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2025-01-10 12:15 修改: 2025-01-10 12:15
libtinfo6	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
login	CVE-2023-4641	中危	1:4.13+dfsg1-1+b1	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
mariadb-client	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-client-core	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-common	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-plugin-provider-bzip2	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-plugin-provider-lz4	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-plugin-provider-lzma	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-plugin-provider-lzo	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-plugin-provider-snappy	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-server	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
mariadb-server-core	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
ncurses-base	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
passwd	CVE-2023-4641	中危	1:4.13+dfsg1-1+b1	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libgcrypt20	CVE-2024-2236	中危	1.10.1-3	libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libfcgi-bin	CVE-2025-23016	中危	2.4.2-2	FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (an ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23016 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2025-01-10 12:15 修改: 2025-01-10 12:15
libmariadb3	CVE-2024-21096	中危	1:10.11.6-0+deb12u1	mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-04-16 22:15 修改: 2024-12-06 21:35
libncurses6	CVE-2023-50495	中危	6.4-4	ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libgssapi-krb5-2	CVE-2024-26461	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gcc-12-base	CVE-2022-27943	低危	12.2.0-14	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libk5crypto3	CVE-2018-5709	低危	1.20.1-2+deb12u2	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3	CVE-2024-26458	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3	CVE-2024-26461	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gcc-12-base	CVE-2023-4039	低危	12.2.0-14	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libkrb5-3	CVE-2018-5709	低危	1.20.1-2+deb12u2	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5-3	CVE-2024-26458	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3	CVE-2024-26461	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpgv	CVE-2022-3219	低危	2.2.40-1.1	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5support0	CVE-2018-5709	低危	1.20.1-2+deb12u2	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0	CVE-2024-26458	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0	CVE-2024-26461	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
apt	CVE-2011-3374	低危	2.6.1	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
libmount1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
krb5-locales	CVE-2018-5709	低危	1.20.1-2+deb12u2	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
krb5-locales	CVE-2024-26458	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
krb5-locales	CVE-2024-26461	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libapt-pkg6.0	CVE-2011-3374	低危	2.6.1	It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
libblkid1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libc-bin	CVE-2010-4756	低危	2.36-9+deb12u9	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc-bin	CVE-2018-20796	低危	2.36-9+deb12u9	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc-bin	CVE-2019-1010022	低危	2.36-9+deb12u9	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010023	低危	2.36-9+deb12u9	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010024	低危	2.36-9+deb12u9	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-1010025	低危	2.36-9+deb12u9	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libperl5.36	CVE-2011-4116	低危	5.36.0-7+deb12u1	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
libperl5.36	CVE-2023-31486	低危	5.36.0-7+deb12u1	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
libproc2-0	CVE-2023-4016	低危	2:4.0.2-3	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libsmartcols1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libstdc++6	CVE-2022-27943	低危	12.2.0-14	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libstdc++6	CVE-2023-4039	低危	12.2.0-14	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libsystemd0	CVE-2013-4392	低危	252.33-1~deb12u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libsystemd0	CVE-2023-31437	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0	CVE-2023-31438	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2023-31439	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libc-bin	CVE-2019-9192	低危	2.36-9+deb12u9	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libudev1	CVE-2013-4392	低危	252.33-1~deb12u1	systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libudev1	CVE-2023-31437	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1	CVE-2023-31438	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libudev1	CVE-2023-31439	低危	252.33-1~deb12u1	An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libuuid1	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libxtables12	CVE-2012-2663	低危	1.8.9-2	iptables: --syn flag bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2014-02-15 14:57 修改: 2023-11-07 02:10
libc6	CVE-2010-4756	低危	2.36-9+deb12u9	glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
login	CVE-2007-5686	低危	1:4.13+dfsg1-1+b1	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
login	CVE-2023-29383	低危	1:4.13+dfsg1-1+b1	shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login	CVE-2024-56433	低危	1:4.13+dfsg1-1+b1	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
login	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+b1	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libc6	CVE-2018-20796	低危	2.36-9+deb12u9	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc6	CVE-2019-1010022	低危	2.36-9+deb12u9	glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010023	低危	2.36-9+deb12u9	glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010024	低危	2.36-9+deb12u9	glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010025	低危	2.36-9+deb12u9	glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-9192	低危	2.36-9+deb12u9	glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libelf1	CVE-2024-25260	低危	0.188-2.1	elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47
bash	TEMP-0841856-B18BAF	低危	5.2.15-2+b7	[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils	CVE-2022-0563	低危	1:2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgcc-s1	CVE-2022-27943	低危	12.2.0-14	binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
mount	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgcc-s1	CVE-2023-4039	低危	12.2.0-14	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
coreutils	CVE-2016-2781	低危	9.1-1	coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libgcrypt20	CVE-2018-6829	低危	1.10.1-3	libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
passwd	CVE-2007-5686	低危	1:4.13+dfsg1-1+b1	initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
passwd	CVE-2023-29383	低危	1:4.13+dfsg1-1+b1	shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd	CVE-2024-56433	低危	1:4.13+dfsg1-1+b1	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd	TEMP-0628843-DBAD28	低危	1:4.13+dfsg1-1+b1	[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30	CVE-2011-3389	低危	3.7.9-2+deb12u3	HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
perl	CVE-2011-4116	低危	5.36.0-7+deb12u1	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl	CVE-2023-31486	低危	5.36.0-7+deb12u1	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
coreutils	CVE-2017-18018	低危	9.1-1	coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
perl-base	CVE-2011-4116	低危	5.36.0-7+deb12u1	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-base	CVE-2023-31486	低危	5.36.0-7+deb12u1	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
libgssapi-krb5-2	CVE-2018-5709	低危	1.20.1-2+deb12u2	krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
perl-modules-5.36	CVE-2011-4116	低危	5.36.0-7+deb12u1	perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-modules-5.36	CVE-2023-31486	低危	5.36.0-7+deb12u1	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
procps	CVE-2023-4016	低危	2:4.0.2-3	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
socat	CVE-2024-54661	低危	1.7.4.4-2	socat: arbitrary file overwrite via predictable /tmp directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-54661 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-12-04 05:15 修改: 2025-01-07 01:15
sysvinit-utils	TEMP-0517018-A83CE6	低危	3.06-4	[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2005-2541	低危	1.34+dfsg-1.2+deb12u1	tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
tar	TEMP-0290435-0B57B5	低危	1.34+dfsg-1.2+deb12u1	[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
util-linux-extra	CVE-2022-0563	低危	2.38.1-5+deb12u3	util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:91b542912d126a7516f2371a25a8b1f865f327cd8bd079f23d057d9945f7d02d 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgssapi-krb5-2	CVE-2024-26458	低危	1.20.1-2+deb12u2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:8fc63c7adfde4fab21eb971240ac076e0f2cee9bea767d2002f889c730342071 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15

server (gobinary)

低危漏洞:1

中危漏洞:15

高危漏洞:7

严重漏洞:2

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/go-git/go-git/v5	CVE-2025-21613	严重	v5.11.0	5.13.0	go-git: argument injection via the URL field 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-21613 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2025-01-06 17:15 修改: 2025-01-06 17:15
stdlib	CVE-2024-24790	严重	1.20.12	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
github.com/cloudflare/circl	GHSA-9763-4f94-gfch	高危	v1.3.3	1.3.7	CIRCL's Kyber: timing side-channel (kyberslash2) 漏洞详情: https://github.com/advisories/GHSA-9763-4f94-gfch 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/beego/beego	CVE-2021-27116	高危	v1.12.12	2.0.2	Privilege escalation in beego 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27116 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2022-04-05 16:15 修改: 2022-04-12 20:17
github.com/go-git/go-git/v5	CVE-2025-21614	高危	v5.11.0	5.13.0	go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-21614 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2025-01-06 17:15 修改: 2025-01-06 17:15
golang.org/x/image	CVE-2024-24792	高危	v0.0.0-20220302094943-723b81ca9867	0.18.0	Parsing a corrupt or malicious image with invalid color indices can ca ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24792 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-06-27 18:15 修改: 2024-08-01 13:47
github.com/beego/beego	CVE-2021-27117	高危	v1.12.12	2.0.2	Privilege escalation in beego 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27117 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2022-04-05 16:15 修改: 2022-04-12 20:17
stdlib	CVE-2023-45288	高危	1.20.12	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.20.12	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
golang.org/x/image	CVE-2023-29408	中危	v0.0.0-20220302094943-723b81ca9867	0.10.0	golang.org/x/image/tiff: TIFF decoder does not place a limit on the size of compressed tile data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29408 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:11
google.golang.org/protobuf	CVE-2024-24786	中危	v1.32.0	1.33.0	golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-11-07 17:35
gopkg.in/square/go-jose.v2	CVE-2024-28180	中危	v2.6.0		jose-go: improper handling of highly compressed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28180 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-09 01:15 修改: 2024-06-12 02:15
github.com/beego/beego	CVE-2024-55885	中危	v1.12.12		Beego has Collision Hazards of MD5 in Cache Key Filenames 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-55885 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-12-12 20:15 修改: 2024-12-12 20:15
golang.org/x/image	CVE-2022-41727	中危	v0.0.0-20220302094943-723b81ca9867	0.5.0	golang.org/x/image: Uncontrolled Resource Consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41727 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
golang.org/x/image	CVE-2023-29407	中危	v0.0.0-20220302094943-723b81ca9867	0.10.0	golang.org/x/image/tiff: excessive CPU consumption in decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29407 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-45289	中危	1.20.12	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.20.12	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.20.12	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.20.12	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.20.12	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.20.12	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.20.12	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.20.12	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.20.12	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
github.com/golang-jwt/jwt/v4	CVE-2024-51744	低危	v4.5.0	4.5.1	golang-jwt: Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-51744 镜像层: sha256:513f4c1a55a5fb8dc16643e956768476447b4c3b34bbba56b921d3c8c48a78c1 发布日期: 2024-11-04 22:15 修改: 2024-11-05 16:04