| 7zip |
CVE-2023-52168 |
中危 |
23.01+dfsg-11 |
|
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52168
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-07-03 18:15 修改: 2026-06-17 06:42
|
| 7zip |
CVE-2023-52169 |
中危 |
23.01+dfsg-11 |
|
The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52169
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-07-03 18:15 修改: 2026-06-17 06:42
|
| 7zip |
CVE-2024-11612 |
中危 |
23.01+dfsg-11 |
|
7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11612
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-11-22 21:15 修改: 2026-06-17 06:58
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| clamav |
CVE-2026-20213 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56
|
| clamav |
CVE-2026-20214 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted FSG file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav |
CVE-2026-20215 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted 7z file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav |
CVE-2026-20216 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted InstallShield file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09
|
| clamav |
CVE-2026-20217 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted PESpin file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07
|
| clamav |
CVE-2026-20243 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted ALZ file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03
|
| clamav |
CVE-2026-20244 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted DMG file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00
|
| clamav-base |
CVE-2026-20213 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56
|
| clamav-base |
CVE-2026-20214 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted FSG file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav-base |
CVE-2026-20215 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted 7z file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav-base |
CVE-2026-20216 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted InstallShield file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09
|
| clamav-base |
CVE-2026-20217 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted PESpin file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07
|
| clamav-base |
CVE-2026-20243 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted ALZ file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03
|
| clamav-base |
CVE-2026-20244 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted DMG file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00
|
| clamav-freshclam |
CVE-2026-20213 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56
|
| clamav-freshclam |
CVE-2026-20214 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted FSG file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav-freshclam |
CVE-2026-20215 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted 7z file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| clamav-freshclam |
CVE-2026-20216 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted InstallShield file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09
|
| clamav-freshclam |
CVE-2026-20217 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted PESpin file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07
|
| clamav-freshclam |
CVE-2026-20243 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted ALZ file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03
|
| clamav-freshclam |
CVE-2026-20244 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted DMG file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00
|
| curl |
CVE-2026-8925 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Double-free vulnerability in SASL authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04
|
| curl |
CVE-2026-8927 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl: libcurl: Information disclosure due to uncleared proxy authentication state
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21
|
| git |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
|
| git-man |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
|
| gzip |
CVE-2026-41991 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| gzip |
CVE-2026-41992 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
GNU gzip contains a global buffer overflow vulnerability in the LZH de ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19
|
| libclamav12 |
CVE-2026-20213 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56
|
| libclamav12 |
CVE-2026-20214 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted FSG file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| libclamav12 |
CVE-2026-20215 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted 7z file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57
|
| libclamav12 |
CVE-2026-20216 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
ClamAV: ClamAV: Denial of Service via crafted InstallShield file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09
|
| libclamav12 |
CVE-2026-20217 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted PESpin file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07
|
| libclamav12 |
CVE-2026-20243 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted ALZ file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03
|
| libclamav12 |
CVE-2026-20244 |
中危 |
1.4.4+dfsg-0ubuntu0.24.04.1 |
1.5.3+dfsg-0ubuntu0.24.04.1 |
clamav: ClamAV: Denial of Service via crafted DMG file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00
|
| libcurl3t64-gnutls |
CVE-2026-8925 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Double-free vulnerability in SASL authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04
|
| libcurl3t64-gnutls |
CVE-2026-8927 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl: libcurl: Information disclosure due to uncleared proxy authentication state
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21
|
| libcurl4t64 |
CVE-2026-8925 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Double-free vulnerability in SASL authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04
|
| libcurl4t64 |
CVE-2026-8927 |
中危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl: libcurl: Information disclosure due to uncleared proxy authentication state
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| libfdisk1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.3-2build1 |
1.10.3-2ubuntu0.1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-23 05:16 修改: 2026-07-14 13:18
|
| libgnutls30t64 |
CVE-2026-33845 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-30 18:16 修改: 2026-07-15 02:20
|
| libgnutls30t64 |
CVE-2026-33846 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-04 10:15 修改: 2026-07-15 02:20
|
| libgnutls30t64 |
CVE-2026-3832 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-30 18:16 修改: 2026-07-13 17:17
|
| libgnutls30t64 |
CVE-2026-3833 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-30 18:16 修改: 2026-07-13 22:16
|
| libgnutls30t64 |
CVE-2026-42009 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-18 13:16 修改: 2026-07-15 02:21
|
| libgnutls30t64 |
CVE-2026-42010 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-07 12:16 修改: 2026-07-15 02:21
|
| libgnutls30t64 |
CVE-2026-42011 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-07 15:16 修改: 2026-07-13 17:17
|
| libgnutls30t64 |
CVE-2026-42012 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30t64 |
CVE-2026-42013 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30t64 |
CVE-2026-42014 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-06-16 02:16 修改: 2026-07-15 15:16
|
| libgnutls30t64 |
CVE-2026-42015 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30t64 |
CVE-2026-5260 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30t64 |
CVE-2026-5419 |
中危 |
3.8.3-1.1ubuntu3.5 |
3.8.3-1.1ubuntu3.6 |
gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-06-01 21:16 修改: 2026-07-15 15:16
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libnghttp2-14 |
CVE-2026-58055 |
中危 |
1.59.0-1ubuntu0.3 |
1.59.0-1ubuntu0.4 |
nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41
|
| libnss3 |
CVE-2026-12318 |
中危 |
2:3.98-1ubuntu0.1 |
2:3.98-1ubuntu0.2 |
firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12318
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-16 13:16 修改: 2026-06-17 14:26
|
| libopenjp2-7 |
CVE-2023-39328 |
中危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: denail of service via crafted image file
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-07-09 14:15 修改: 2026-06-26 10:16
|
| libopenjp2-7 |
CVE-2023-39329 |
中危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: Resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39329
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-07-13 03:15 修改: 2026-06-17 06:12
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16
|
| libperl5.38t64 |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21
|
| libperl5.38t64 |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| libpixman-1-0 |
CVE-2023-37769 |
中危 |
0.42.2-1build1 |
|
stress-test master commit e4c878 was discovered to contain a FPE vulne ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08
|
| libpython3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12-minimal |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| libpython3.12-minimal |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12-minimal |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12-minimal |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12-minimal |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12-minimal |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libpython3.12-minimal |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| libpython3.12-minimal |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12-minimal |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| libpython3.12-minimal |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12-minimal |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpython3.12-stdlib |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12-stdlib |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| libpython3.12-stdlib |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12-stdlib |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12-stdlib |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12-stdlib |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12-stdlib |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libpython3.12-stdlib |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| libpython3.12-stdlib |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12-stdlib |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| libpython3.12-stdlib |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12-stdlib |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpython3.12t64 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12t64 |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| libpython3.12t64 |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12t64 |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12t64 |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12t64 |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12t64 |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libpython3.12t64 |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| libpython3.12t64 |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12t64 |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| libpython3.12t64 |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12t64 |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libsqlite3-0 |
CVE-2026-11822 |
中危 |
3.45.1-1ubuntu2.5 |
3.45.1-1ubuntu2.6 |
SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
|
| libsqlite3-0 |
CVE-2026-11824 |
中危 |
3.45.1-1ubuntu2.5 |
3.45.1-1ubuntu2.6 |
SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libxslt1.1 |
CVE-2025-10911 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: use-after-free with key data stored cross-RVT
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-09-25 16:15 修改: 2026-06-30 00:16
|
| libxslt1.1 |
CVE-2025-7425 |
中危 |
1.1.39-0exp1ubuntu0.24.04.3 |
|
libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-07-10 14:15 修改: 2026-06-29 21:16
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| perl |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21
|
| perl |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| perl-base |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21
|
| perl-base |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| perl-modules-5.38 |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21
|
| perl-modules-5.38 |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| python3-pip-whl |
CVE-2024-35195 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
requests: subsequent requests to the same host ignore cert verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2024-05-20 21:15 修改: 2026-06-17 07:34
|
| python3-pip-whl |
CVE-2025-66418 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66418
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-12-05 16:15 修改: 2026-06-17 09:56
|
| python3-pip-whl |
CVE-2025-66471 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 Streaming API improperly handles highly compressed data
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66471
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-12-05 17:16 修改: 2026-06-17 09:56
|
| python3-pip-whl |
CVE-2026-21441 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21441
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-07 22:15 修改: 2026-07-15 02:18
|
| python3-pip-whl |
CVE-2026-9375 |
中危 |
24.0+dfsg-1ubuntu1.3 |
|
urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9375
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-19 19:16 修改: 2026-06-22 19:49
|
| python3.12 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.12 |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| python3.12 |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.12 |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.12 |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.12 |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.12 |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| python3.12 |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| python3.12 |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.12 |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| python3.12 |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| python3.12 |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| python3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.12-minimal |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| python3.12-minimal |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.12-minimal |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.12-minimal |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.12-minimal |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.12-minimal |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| python3.12-minimal |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| python3.12-minimal |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.12-minimal |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| python3.12-minimal |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| python3.12-minimal |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| python3.12-venv |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.12-venv |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| python3.12-venv |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.12-venv |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.12-venv |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.12-venv |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.12-venv |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.12-venv |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.12-venv |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| python3.12-venv |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22
|
| python3.12-venv |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.12-venv |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| python3.12-venv |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| python3.12-venv |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.12-venv |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.2 |
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.1 |
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| curl |
CVE-2026-8286 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Insecure connection establishment due to TLS configuration mismatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42
|
| libopenjp2-7 |
CVE-2019-6988 |
低危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: DoS via memory exhaustion in opj_decompress
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6988
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2019-01-28 16:29 修改: 2026-06-17 02:39
|
| libsystemd-shared |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libtinfo6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| curl |
CVE-2026-8458 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl might in some circumstances reuse the wrong connection when as ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12
|
| curl |
CVE-2026-8924 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Cookie injection via malicious HTTP server using super cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2build1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libcairo2 |
CVE-2017-7475 |
低危 |
1.18.0-3build1 |
|
cairo: NULL pointer dereference with a crafted font file
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24
|
| ncurses-base |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| ncurses-bin |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libpoppler134 |
CVE-2019-9543 |
低危 |
24.02.0-1ubuntu9.9 |
|
poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43
|
| libpoppler134 |
CVE-2019-9545 |
低危 |
24.02.0-1ubuntu9.9 |
|
poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43
|
| libcairo2 |
CVE-2018-18064 |
低危 |
1.18.0-3build1 |
|
cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46
|
| curl |
CVE-2026-9547 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Man-in-the-middle attack via SSH host key bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52
|
| libcurl3t64-gnutls |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.11 |
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| libcurl3t64-gnutls |
CVE-2026-8286 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Insecure connection establishment due to TLS configuration mismatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42
|
| poppler-utils |
CVE-2019-9543 |
低危 |
24.02.0-1ubuntu9.9 |
|
poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43
|
| poppler-utils |
CVE-2019-9545 |
低危 |
24.02.0-1ubuntu9.9 |
|
poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43
|
| libcurl3t64-gnutls |
CVE-2026-8458 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl might in some circumstances reuse the wrong connection when as ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12
|
| libcurl3t64-gnutls |
CVE-2026-8924 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Cookie injection via malicious HTTP server using super cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06
|
| libcurl3t64-gnutls |
CVE-2026-9547 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Man-in-the-middle attack via SSH host key bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52
|
| libbpf1 |
CVE-2025-29481 |
低危 |
1:1.3.0-2build2 |
|
libbpf: Heap Buffer Overflow in libbpf
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05
|
| curl |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.11 |
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| python3-pip-whl |
CVE-2026-1703 |
低危 |
24.0+dfsg-1ubuntu1.3 |
|
pip: pip: Information disclosure via path traversal when installing crafted wheel archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-02-02 15:16 修改: 2026-06-17 10:16
|
| libcurl4t64 |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.11 |
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| libcurl4t64 |
CVE-2026-8286 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Insecure connection establishment due to TLS configuration mismatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42
|
| libcurl4t64 |
CVE-2026-8458 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
libcurl might in some circumstances reuse the wrong connection when as ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12
|
| libicu74 |
CVE-2025-5222 |
低危 |
74.2-1ubuntu3.1 |
|
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-05-27 21:15 修改: 2026-07-14 13:17
|
| liblzma5 |
CVE-2026-34743 |
低危 |
5.6.1+really5.4.5-1ubuntu0.2 |
5.6.1+really5.4.5-1ubuntu0.3 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
|
| libcurl4t64 |
CVE-2026-8924 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Cookie injection via malicious HTTP server using super cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06
|
| libncursesw6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| systemd |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| systemd-dev |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libcurl4t64 |
CVE-2026-9547 |
低危 |
8.5.0-2ubuntu10.9 |
8.5.0-2ubuntu10.10 |
curl: curl: Man-in-the-middle attack via SSH host key bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52
|
| libelf1t64 |
CVE-2025-1352 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| libelf1t64 |
CVE-2025-1376 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| zlib1g |
CVE-2026-27171 |
低危 |
1:1.3.dfsg-3.1ubuntu2.1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|