docker.io/cvat/server:v2.69.0 linux/amd64

docker.io/cvat/server:v2.69.0 - Trivy安全扫描结果 扫描时间: 2026-07-17 15:26
全部漏洞信息
低危漏洞:44 中危漏洞:209 高危漏洞:12 严重漏洞:0

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2026-07-17 15:26

docker.io/cvat/server:v2.69.0 (ubuntu 24.04) (ubuntu)
低危漏洞:41 中危漏洞:189 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
7zip CVE-2023-52168 中危 23.01+dfsg-11 The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52168

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-07-03 18:15 修改: 2026-06-17 06:42

7zip CVE-2023-52169 中危 23.01+dfsg-11 The NtfsHandler.cpp NTFS handler in 7-Zip before 24.01 (for 7zz) conta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52169

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-07-03 18:15 修改: 2026-06-17 06:42

7zip CVE-2024-11612 中危 23.01+dfsg-11 7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vu ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11612

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-11-22 21:15 修改: 2026-06-17 06:58

bsdutils CVE-2026-27456 中危 1:2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

clamav CVE-2026-20213 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56

clamav CVE-2026-20214 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted FSG file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav CVE-2026-20215 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted 7z file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav CVE-2026-20216 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted InstallShield file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09

clamav CVE-2026-20217 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted PESpin file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07

clamav CVE-2026-20243 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted ALZ file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03

clamav CVE-2026-20244 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted DMG file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00

clamav-base CVE-2026-20213 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56

clamav-base CVE-2026-20214 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted FSG file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav-base CVE-2026-20215 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted 7z file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav-base CVE-2026-20216 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted InstallShield file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09

clamav-base CVE-2026-20217 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted PESpin file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07

clamav-base CVE-2026-20243 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted ALZ file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03

clamav-base CVE-2026-20244 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted DMG file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00

clamav-freshclam CVE-2026-20213 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56

clamav-freshclam CVE-2026-20214 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted FSG file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav-freshclam CVE-2026-20215 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted 7z file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

clamav-freshclam CVE-2026-20216 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted InstallShield file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09

clamav-freshclam CVE-2026-20217 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted PESpin file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07

clamav-freshclam CVE-2026-20243 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted ALZ file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03

clamav-freshclam CVE-2026-20244 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted DMG file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00

curl CVE-2026-8925 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Double-free vulnerability in SASL authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04

curl CVE-2026-8927 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl: libcurl: Information disclosure due to uncleared proxy authentication state

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21

git CVE-2024-52005 中危 1:2.43.0-1ubuntu7.3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06

git-man CVE-2024-52005 中危 1:2.43.0-1ubuntu7.3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06

gzip CVE-2026-41991 中危 1.12-1ubuntu3.1 1.12-1ubuntu3.2 gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

gzip CVE-2026-41992 中危 1.12-1ubuntu3.1 1.12-1ubuntu3.2 GNU gzip contains a global buffer overflow vulnerability in the LZH de ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

libblkid1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libc-bin CVE-2026-4046 中危 2.39-0ubuntu8.7 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18

libc-bin CVE-2026-4437 中危 2.39-0ubuntu8.7 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18

libc-bin CVE-2026-4438 中危 2.39-0ubuntu8.7 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18

libc-bin CVE-2026-5435 中危 2.39-0ubuntu8.7 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19

libc-bin CVE-2026-6238 中危 2.39-0ubuntu8.7 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19

libc6 CVE-2026-4046 中危 2.39-0ubuntu8.7 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18

libc6 CVE-2026-4437 中危 2.39-0ubuntu8.7 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18

libc6 CVE-2026-4438 中危 2.39-0ubuntu8.7 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18

libc6 CVE-2026-5435 中危 2.39-0ubuntu8.7 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19

libc6 CVE-2026-6238 中危 2.39-0ubuntu8.7 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19

libclamav12 CVE-2026-20213 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted Portable Executable (PE) files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20213

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:56

libclamav12 CVE-2026-20214 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted FSG file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20214

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

libclamav12 CVE-2026-20215 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted 7z file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20215

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 17:57

libclamav12 CVE-2026-20216 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 ClamAV: ClamAV: Denial of Service via crafted InstallShield file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20216

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:09

libclamav12 CVE-2026-20217 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted PESpin file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20217

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:07

libclamav12 CVE-2026-20243 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted ALZ file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20243

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:03

libclamav12 CVE-2026-20244 中危 1.4.4+dfsg-0ubuntu0.24.04.1 1.5.3+dfsg-0ubuntu0.24.04.1 clamav: ClamAV: Denial of Service via crafted DMG file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-20244

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-07-01 17:16 修改: 2026-07-09 18:00

libcurl3t64-gnutls CVE-2026-8925 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Double-free vulnerability in SASL authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04

libcurl3t64-gnutls CVE-2026-8927 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl: libcurl: Information disclosure due to uncleared proxy authentication state

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21

libcurl4t64 CVE-2026-8925 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Double-free vulnerability in SASL authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04

libcurl4t64 CVE-2026-8927 中危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl: libcurl: Information disclosure due to uncleared proxy authentication state

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21

libexpat1 CVE-2025-66382 中危 2.6.1-2ubuntu0.4 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56

libfdisk1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libgcrypt20 CVE-2026-41989 中危 1.10.3-2build1 1.10.3-2ubuntu0.1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-23 05:16 修改: 2026-07-14 13:18

libgnutls30t64 CVE-2026-33845 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-30 18:16 修改: 2026-07-15 02:20

libgnutls30t64 CVE-2026-33846 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-04 10:15 修改: 2026-07-15 02:20

libgnutls30t64 CVE-2026-3832 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-30 18:16 修改: 2026-07-13 17:17

libgnutls30t64 CVE-2026-3833 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-30 18:16 修改: 2026-07-13 22:16

libgnutls30t64 CVE-2026-42009 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-18 13:16 修改: 2026-07-15 02:21

libgnutls30t64 CVE-2026-42010 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-07 12:16 修改: 2026-07-15 02:21

libgnutls30t64 CVE-2026-42011 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-07 15:16 修改: 2026-07-13 17:17

libgnutls30t64 CVE-2026-42012 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16

libgnutls30t64 CVE-2026-42013 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16

libgnutls30t64 CVE-2026-42014 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-06-16 02:16 修改: 2026-07-15 15:16

libgnutls30t64 CVE-2026-42015 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16

libgnutls30t64 CVE-2026-5260 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16

libgnutls30t64 CVE-2026-5419 中危 3.8.3-1.1ubuntu3.5 3.8.3-1.1ubuntu3.6 gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-06-01 21:16 修改: 2026-07-15 15:16

libmount1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libnghttp2-14 CVE-2026-58055 中危 1.59.0-1ubuntu0.3 1.59.0-1ubuntu0.4 nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41

libnss3 CVE-2026-12318 中危 2:3.98-1ubuntu0.1 2:3.98-1ubuntu0.2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12318

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-16 13:16 修改: 2026-06-17 14:26

libopenjp2-7 CVE-2023-39328 中危 2.5.0-2ubuntu0.5 openjpeg: denail of service via crafted image file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-07-09 14:15 修改: 2026-06-26 10:16

libopenjp2-7 CVE-2023-39329 中危 2.5.0-2ubuntu0.5 openjpeg: Resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39329

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-07-13 03:15 修改: 2026-06-17 06:12

libp11-kit0 CVE-2026-13757 中危 0.25.3-4ubuntu2.1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16

libperl5.38t64 CVE-2026-42496 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21

libperl5.38t64 CVE-2026-8376 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

libpixman-1-0 CVE-2023-37769 中危 0.42.2-1build1 stress-test master commit e4c878 was discovered to contain a FPE vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08

libpython3.12-minimal CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

libpython3.12-minimal CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

libpython3.12-minimal CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

libpython3.12-minimal CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

libpython3.12-minimal CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

libpython3.12-minimal CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

libpython3.12-minimal CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

libpython3.12-minimal CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

libpython3.12-minimal CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

libpython3.12-minimal CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

libpython3.12-minimal CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

libpython3.12-minimal CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

libpython3.12-minimal CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

libpython3.12-minimal CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

libpython3.12-minimal CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

libpython3.12-stdlib CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

libpython3.12-stdlib CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

libpython3.12-stdlib CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

libpython3.12-stdlib CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

libpython3.12-stdlib CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

libpython3.12-stdlib CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

libpython3.12-stdlib CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

libpython3.12-stdlib CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

libpython3.12-stdlib CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

libpython3.12-stdlib CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

libpython3.12-stdlib CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

libpython3.12-stdlib CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

libpython3.12-stdlib CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

libpython3.12-stdlib CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

libpython3.12-stdlib CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

libpython3.12t64 CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

libpython3.12t64 CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

libpython3.12t64 CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

libpython3.12t64 CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

libpython3.12t64 CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

libpython3.12t64 CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

libpython3.12t64 CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

libpython3.12t64 CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

libpython3.12t64 CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

libpython3.12t64 CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

libpython3.12t64 CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

libpython3.12t64 CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

libpython3.12t64 CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

libpython3.12t64 CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

libpython3.12t64 CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

libsmartcols1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libsqlite3-0 CVE-2026-11822 中危 3.45.1-1ubuntu2.5 3.45.1-1ubuntu2.6 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libsqlite3-0 CVE-2026-11824 中危 3.45.1-1ubuntu2.5 3.45.1-1ubuntu2.6 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libuuid1 CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libxslt1.1 CVE-2025-10911 中危 1.1.39-0exp1ubuntu0.24.04.3 libxslt: use-after-free with key data stored cross-RVT

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-09-25 16:15 修改: 2026-06-30 00:16

libxslt1.1 CVE-2025-7425 中危 1.1.39-0exp1ubuntu0.24.04.3 libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-07-10 14:15 修改: 2026-06-29 21:16

mount CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

perl CVE-2026-42496 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21

perl CVE-2026-8376 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

perl-base CVE-2026-42496 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21

perl-base CVE-2026-8376 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

perl-modules-5.38 CVE-2026-42496 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21

perl-modules-5.38 CVE-2026-8376 中危 5.38.2-3.2ubuntu0.2 5.38.2-3.2ubuntu0.3 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

python3-pip-whl CVE-2024-35195 中危 24.0+dfsg-1ubuntu1.3 requests: subsequent requests to the same host ignore cert verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2024-05-20 21:15 修改: 2026-06-17 07:34

python3-pip-whl CVE-2025-66418 中危 24.0+dfsg-1ubuntu1.3 urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66418

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-12-05 16:15 修改: 2026-06-17 09:56

python3-pip-whl CVE-2025-66471 中危 24.0+dfsg-1ubuntu1.3 urllib3: urllib3 Streaming API improperly handles highly compressed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66471

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-12-05 17:16 修改: 2026-06-17 09:56

python3-pip-whl CVE-2026-21441 中危 24.0+dfsg-1ubuntu1.3 urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21441

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-07 22:15 修改: 2026-07-15 02:18

python3-pip-whl CVE-2026-9375 中危 24.0+dfsg-1ubuntu1.3 urllib3 version 2.6.3 is vulnerable to a decompression bomb bypass in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9375

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-19 19:16 修改: 2026-06-22 19:49

python3.12 CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

python3.12 CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

python3.12 CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

python3.12 CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

python3.12 CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

python3.12 CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

python3.12 CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

python3.12 CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

python3.12 CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

python3.12 CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

python3.12 CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

python3.12 CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

python3.12 CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

python3.12 CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

python3.12 CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

python3.12-minimal CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

python3.12-minimal CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

python3.12-minimal CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

python3.12-minimal CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

python3.12-minimal CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

python3.12-minimal CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

python3.12-minimal CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

python3.12-minimal CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

python3.12-minimal CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

python3.12-minimal CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

python3.12-minimal CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

python3.12-minimal CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

python3.12-minimal CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

python3.12-minimal CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

python3.12-minimal CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

python3.12-venv CVE-2025-13462 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34

python3.12-venv CVE-2025-69534 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17

python3.12-venv CVE-2026-1299 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15

python3.12-venv CVE-2026-1502 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16

python3.12-venv CVE-2026-2297 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30

python3.12-venv CVE-2026-3276 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43

python3.12-venv CVE-2026-3644 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16

python3.12-venv CVE-2026-4224 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56

python3.12-venv CVE-2026-4519 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22

python3.12-venv CVE-2026-4786 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 22:16 修改: 2026-07-15 02:22

python3.12-venv CVE-2026-6019 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00

python3.12-venv CVE-2026-6100 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16

python3.12-venv CVE-2026-7774 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16

python3.12-venv CVE-2026-8328 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16

python3.12-venv CVE-2026-9669 中危 3.12.3-1ubuntu0.13 3.12.3-1ubuntu0.15 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16

tar CVE-2025-45582 中危 1.35+dfsg-3build1 1.35+dfsg-3ubuntu0.2 tar: Tar path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25

tar CVE-2026-5704 中危 1.35+dfsg-3build1 1.35+dfsg-3ubuntu0.1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59

util-linux CVE-2026-27456 中危 2.39.3-9ubuntu6.5 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

curl CVE-2026-8286 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Insecure connection establishment due to TLS configuration mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42

libopenjp2-7 CVE-2019-6988 低危 2.5.0-2ubuntu0.5 openjpeg: DoS via memory exhaustion in opj_decompress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6988

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2019-01-28 16:29 修改: 2026-06-17 02:39

libsystemd-shared CVE-2026-40228 低危 255.4-1ubuntu8.16 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libsystemd0 CVE-2026-40228 低危 255.4-1ubuntu8.16 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libtinfo6 CVE-2025-69720 低危 6.4+20240113-1ubuntu2 6.4+20240113-1ubuntu2.1 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libudev1 CVE-2026-40228 低危 255.4-1ubuntu8.16 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

curl CVE-2026-8458 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl might in some circumstances reuse the wrong connection when as ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12

curl CVE-2026-8924 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Cookie injection via malicious HTTP server using super cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06

libgcrypt20 CVE-2024-2236 低危 1.10.3-2build1 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24

login CVE-2024-56433 低危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libcairo2 CVE-2017-7475 低危 1.18.0-3build1 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24

ncurses-base CVE-2025-69720 低危 6.4+20240113-1ubuntu2 6.4+20240113-1ubuntu2.1 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-bin CVE-2025-69720 低危 6.4+20240113-1ubuntu2 6.4+20240113-1ubuntu2.1 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

passwd CVE-2024-56433 低危 1:4.13+dfsg1-4ubuntu3.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libpoppler134 CVE-2019-9543 低危 24.02.0-1ubuntu9.9 poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43

libpoppler134 CVE-2019-9545 低危 24.02.0-1ubuntu9.9 poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43

libcairo2 CVE-2018-18064 低危 1.18.0-3build1 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46

curl CVE-2026-9547 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Man-in-the-middle attack via SSH host key bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52

libcurl3t64-gnutls CVE-2026-10536 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.11 libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02

libcurl3t64-gnutls CVE-2026-8286 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Insecure connection establishment due to TLS configuration mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42

poppler-utils CVE-2019-9543 低危 24.02.0-1ubuntu9.9 poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43

poppler-utils CVE-2019-9545 低危 24.02.0-1ubuntu9.9 poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2019-03-01 19:29 修改: 2026-06-17 02:43

libcurl3t64-gnutls CVE-2026-8458 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl might in some circumstances reuse the wrong connection when as ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12

libcurl3t64-gnutls CVE-2026-8924 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Cookie injection via malicious HTTP server using super cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06

libcurl3t64-gnutls CVE-2026-9547 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Man-in-the-middle attack via SSH host key bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52

libbpf1 CVE-2025-29481 低危 1:1.3.0-2build2 libbpf: Heap Buffer Overflow in libbpf

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05

curl CVE-2026-10536 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.11 libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02

python3-pip-whl CVE-2026-1703 低危 24.0+dfsg-1ubuntu1.3 pip: pip: Information disclosure via path traversal when installing crafted wheel archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-02-02 15:16 修改: 2026-06-17 10:16

libcurl4t64 CVE-2026-10536 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.11 libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02

libcurl4t64 CVE-2026-8286 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Insecure connection establishment due to TLS configuration mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42

libcurl4t64 CVE-2026-8458 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 libcurl might in some circumstances reuse the wrong connection when as ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12

libicu74 CVE-2025-5222 低危 74.2-1ubuntu3.1 icu: Stack buffer overflow in the SRBRoot::addTag function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-05-27 21:15 修改: 2026-07-14 13:17

liblzma5 CVE-2026-34743 低危 5.6.1+really5.4.5-1ubuntu0.2 5.6.1+really5.4.5-1ubuntu0.3 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

libcurl4t64 CVE-2026-8924 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Cookie injection via malicious HTTP server using super cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06

libncursesw6 CVE-2025-69720 低危 6.4+20240113-1ubuntu2 6.4+20240113-1ubuntu2.1 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

systemd CVE-2026-40228 低危 255.4-1ubuntu8.16 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

systemd-dev CVE-2026-40228 低危 255.4-1ubuntu8.16 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:3a293f0698de07732041d9fa5bf0d97881199ed0afaac6bbb14ee4738c9d2d0e

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libcurl4t64 CVE-2026-9547 低危 8.5.0-2ubuntu10.9 8.5.0-2ubuntu10.10 curl: curl: Man-in-the-middle attack via SSH host key bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52

libelf1t64 CVE-2025-1352 低危 0.190-1.1ubuntu0.1 elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38

libelf1t64 CVE-2025-1376 低危 0.190-1.1ubuntu0.1 elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376

镜像层: sha256:aad05273621982cd967823336f4fe40919c83edf9a99458dd68c84f9a03597d0

发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39

zlib1g CVE-2026-27171 低危 1:1.3.dfsg-3.1ubuntu2.1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:98effb2dfe85d4c431f97d90482075f19e5fc3a57c2dd423d8bdfd4813620043

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26

Python (python-pkg)
低危漏洞:3 中危漏洞:12 高危漏洞:4 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
PyJWT CVE-2026-48526 高危 2.12.1 2.13.0 python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48526

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-05-28 16:16 修改: 2026-07-15 03:16

cryptography GHSA-537c-gmf6-5ccf 高危 46.0.5 48.0.1 Vulnerable OpenSSL included in cryptography wheels

漏洞详情: https://github.com/advisories/GHSA-537c-gmf6-5ccf

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-06-15 20:12 修改: 2026-06-15 20:12

lxml CVE-2026-41066 高危 5.4.0 6.1.0 lxml: python: lxml: Information disclosure via untrusted XML input leading to local file read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41066

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46

nltk CVE-2026-54293 高危 3.9.4 nltk: NLTK: Information Disclosure via Path Traversal in `nltk.data.load()`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54293

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-06-22 19:17 修改: 2026-07-15 01:16

PyJWT CVE-2026-48522 中危 2.12.1 2.13.0 python-pyjwt: PyJWT: Server-Side Request Forgery (SSRF) via uncontrolled URL fetching in PyJWKClient

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48522

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55

cryptography CVE-2026-39892 中危 46.0.5 46.0.7 cryptography: Cryptography: Buffer overflow via non-contiguous buffer in API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39892

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-04-08 21:17 修改: 2026-07-15 02:20

django-allauth CVE-2025-65430 中危 0.57.2 65.13.0 An issue was discovered in allauth-django before 65.13.0. IdP: marking ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65430

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2025-12-15 14:15 修改: 2026-06-17 09:55

django-allauth CVE-2025-65431 中危 0.57.2 65.13.0 An issue was discovered in allauth-django before 65.13.0. Both Okta an ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65431

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2025-12-15 14:15 修改: 2026-06-17 09:55

django-allauth CVE-2026-27982 中危 0.57.2 65.14.1 django-allauth: django-allauth: Open redirect via crafted URL in SAML IdP initiated SSO

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27982

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-03-05 06:16 修改: 2026-06-17 10:28

fonttools CVE-2025-66034 中危 4.58.4 4.60.2 fonttools: fontTools: Arbitrary file write leading to remote code execution via malicious .designspace file

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66034

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2025-11-29 01:16 修改: 2026-06-17 09:56

idna CVE-2026-45409 中危 3.10 3.15 python-idna: idna: Denial of Service via specially crafted long inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45409

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-06-05 23:16 修改: 2026-06-17 10:52

PyJWT CVE-2026-48523 中危 2.12.1 2.13.0 python-pyjwt: PyJWT: Verifier-side algorithm bypass leads to unauthorized information access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48523

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55

PyJWT CVE-2026-48525 中危 2.12.1 2.13.0 python-pyjwt: PyJWT: Denial of Service via processing of crafted detached JWS tokens

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48525

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55

python-ldap CVE-2025-61911 中危 3.4.3 3.4.5 python-ldap: sanitization bypass in ldap.filter.escape_filter_chars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61911

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2025-10-10 22:15 修改: 2026-06-17 09:51

python-ldap CVE-2025-61912 中危 3.4.3 3.4.5 python-ldap: python-ldap Vulnerable to Improper Encoding or Escaping of Output and Improper Null Termination

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61912

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2025-10-10 22:15 修改: 2026-06-17 09:51

sqlparse GHSA-27jp-wm6q-gp25 中危 0.5.3 0.5.4 sqlparse: formatting list of tuples leads to denial of service

漏洞详情: https://github.com/advisories/GHSA-27jp-wm6q-gp25

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-02-13 16:16 修改: 2026-02-13 16:16

PyJWT CVE-2026-48524 低危 2.12.1 2.13.0 python-pyjwt: PyJWT: Denial of Service via unverified JSON Web Token key IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48524

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55

cryptography CVE-2026-34073 低危 46.0.5 46.0.6 python-cryptography: Cryptography: Security bypass due to improper DNS name constraint validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34073

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-03-31 03:15 修改: 2026-06-17 10:38

Django CVE-2026-7666 低危 5.2.14 5.2.15, 6.0.6 django: Django: Information disclosure via failed STARTTLS handshake in EmailBackend

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7666

镜像层: sha256:06431f05ad39162eeda82cff132db9efa2faf9d226468481795ffd145fa8f019

发布日期: 2026-06-03 14:16 修改: 2026-06-17 11:02

usr/local/bin/smokescreen (gobinary)
低危漏洞:0 中危漏洞:8 高危漏洞:8 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
github.com/sirupsen/logrus CVE-2025-65637 高危 v1.9.0 1.8.3, 1.9.1, 1.9.3 github.com/sirupsen/logrus: github.com/sirupsen/logrus: Denial-of-Service due to large single-line payload

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65637

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2025-12-04 19:16 修改: 2026-06-17 09:55

golang.org/x/net CVE-2023-45288 高危 v0.17.0 0.23.0 golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2024-04-04 21:15 修改: 2026-06-17 06:28

golang.org/x/net CVE-2024-45338 高危 v0.17.0 0.33.0 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2024-12-18 21:15 修改: 2026-06-17 07:54

golang.org/x/net CVE-2026-25681 高危 v0.17.0 0.55.0 golang.org/x/net/html: golang.org/x/net/html: Arbitrary code execution via Cross-Site Scripting

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25681

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-06-17 10:25

golang.org/x/net CVE-2026-27136 高危 v0.17.0 0.55.0 golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via HTML parsing bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27136

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-06-17 10:26

golang.org/x/net CVE-2026-33814 高危 v0.17.0 0.53.0 net/http/internal/http2: golang: golang.org/x/net: Go HTTP/2: Denial of Service via malformed SETTINGS_MAX_FRAME_SIZE frame

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-07 20:16 修改: 2026-07-15 02:20

golang.org/x/net CVE-2026-39821 高危 v0.17.0 0.55.0 golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39821

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-07-15 12:17

stdlib CVE-2026-39822 高危 v1.26.4 1.25.12, 1.26.5, 1.27.0-rc.2 os: golang: Go os.Root: Symlink following vulnerability allows directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39822

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-07-08 17:17 修改: 2026-07-13 14:54

golang.org/x/net CVE-2025-22872 中危 v0.17.0 0.38.0 golang.org/x/net/html: Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22872

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2025-04-16 18:16 修改: 2026-06-17 08:50

golang.org/x/net CVE-2025-47911 中危 v0.17.0 0.45.0 golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47911

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-02-05 18:16 修改: 2026-06-17 09:28

golang.org/x/net CVE-2025-58190 中危 v0.17.0 0.45.0 golang.org/x/net/html: Infinite parsing loop in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58190

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-02-05 18:16 修改: 2026-06-17 09:44

golang.org/x/net CVE-2026-25680 中危 v0.17.0 0.55.0 golang.org/x/net/html: golang.org/x/net/html: Denial of Service due to excessive HTML parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25680

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-06-17 10:25

golang.org/x/net CVE-2026-42502 中危 v0.17.0 0.55.0 golang.org/x/net/html: golang: golang.org/x/net/html: Cross-Site Scripting via unexpected HTML tree rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42502

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-06-17 10:47

golang.org/x/net CVE-2026-42506 中危 v0.17.0 0.55.0 golang.org/x/net/html: golang.org/x/net/html: Cross-Site Scripting (XSS) via arbitrary HTML parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42506

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 16:16 修改: 2026-06-17 10:47

golang.org/x/net CVE-2025-22870 中危 v0.17.0 0.36.0 golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22870

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2025-03-12 19:15 修改: 2026-06-17 08:50

stdlib CVE-2026-42505 中危 v1.26.4 1.25.12, 1.26.5, 1.27.0-rc.2 crypto/tls: golang: Go crypto/tls: Information disclosure in Encrypted Client Hello

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42505

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-07-08 17:17 修改: 2026-07-13 17:05

golang.org/x/text CVE-2026-56852 未知 v0.13.0 0.39.0 Infinite loop on invalid input in golang.org/x/text

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56852

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

golang.org/x/net CVE-2026-46600 未知 v0.17.0 0.56.0 Parsing an invalid SVCB or HTTPS RR can panic in golang.org/x/net/dns/dnsmessage

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46600

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

golang.org/x/sys CVE-2026-39824 未知 v0.13.0 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:4cf3ad3d1fede7f3cf0c19e5b6fb966ffb871136368c74cd58ba36bf18408d7a

发布日期: 2026-05-22 20:16 修改: 2026-06-17 10:42

/opt/venv/lib/python3.12/site-packages/slapdtest/certs/client.key ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/opt/venv/lib/python3.12/site-packages/slapdtest/certs/server.key ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×