| curl |
CVE-2023-23914 |
严重 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS ignored on multiple requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-02-23 20:15 修改: 2026-06-17 05:38
|
| libcurl4 |
CVE-2023-23914 |
严重 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS ignored on multiple requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-02-23 20:15 修改: 2026-06-17 05:38
|
| libdb5.3 |
CVE-2019-8457 |
严重 |
5.3.28+dfsg1-0.8 |
|
sqlite: heap out-of-bound read in function rtreenode()
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-05-30 16:29 修改: 2026-06-17 02:42
|
| libgnutls30 |
CVE-2026-33845 |
严重 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-30 18:16 修改: 2026-07-07 12:16
|
| libgnutls30 |
CVE-2026-42010 |
严重 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-07 12:16 修改: 2026-07-08 13:16
|
| libnginx-mod-http-geoip |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libnginx-mod-http-image-filter |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libnginx-mod-http-xslt-filter |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libnginx-mod-mail |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libnginx-mod-stream |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libnginx-mod-stream-geoip |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| libperl5.32 |
CVE-2026-42496 |
严重 |
5.32.1-4+deb11u4 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| libperl5.32 |
CVE-2026-8376 |
严重 |
5.32.1-4+deb11u4 |
|
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| nginx |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| nginx-common |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| nginx-core |
CVE-2026-42945 |
严重 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Arbitrary Code Execution Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-27 05:16
|
| perl |
CVE-2026-42496 |
严重 |
5.32.1-4+deb11u4 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| perl |
CVE-2026-8376 |
严重 |
5.32.1-4+deb11u4 |
|
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| perl-base |
CVE-2026-42496 |
严重 |
5.32.1-4+deb11u4 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| perl-base |
CVE-2026-8376 |
严重 |
5.32.1-4+deb11u4 |
|
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| perl-modules-5.32 |
CVE-2026-42496 |
严重 |
5.32.1-4+deb11u4 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| perl-modules-5.32 |
CVE-2026-8376 |
严重 |
5.32.1-4+deb11u4 |
|
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| php7.4 |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4 |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-bcmath |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-bcmath |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-cli |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-cli |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-common |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-common |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-curl |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-curl |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-fpm |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-fpm |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-gd |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-gd |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-json |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-json |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-mbstring |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-mbstring |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-opcache |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-opcache |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-readline |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-readline |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-xml |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-xml |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-zip |
CVE-2026-6722 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6722
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-zip |
CVE-2026-7261 |
严重 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7261
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| zlib1g |
CVE-2023-45853 |
严重 |
1:1.2.11.dfsg-2+deb11u2 |
|
zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-10-14 02:15 修改: 2026-06-17 06:29
|
| libgnutls30 |
CVE-2026-3833 |
高危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:19
|
| libgnutls30 |
CVE-2026-42009 |
高危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-18 13:16 修改: 2026-07-08 13:16
|
| libgssapi-krb5-2 |
CVE-2026-40355 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 06:16 修改: 2026-07-08 12:48
|
| libgssapi-krb5-2 |
CVE-2026-40356 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libk5crypto3 |
CVE-2026-40355 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 06:16 修改: 2026-07-08 12:48
|
| libk5crypto3 |
CVE-2026-40356 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libkrb5-3 |
CVE-2026-40355 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 06:16 修改: 2026-07-08 12:48
|
| libkrb5-3 |
CVE-2026-40356 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libkrb5support0 |
CVE-2026-40355 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 06:16 修改: 2026-07-08 12:48
|
| libkrb5support0 |
CVE-2026-40356 |
高危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u8 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libldap-2.4-2 |
CVE-2023-2953 |
高危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: null pointer dereference in ber_memalloc_x function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-05-30 22:15 修改: 2026-06-17 05:53
|
| libldap-common |
CVE-2023-2953 |
高危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: null pointer dereference in ber_memalloc_x function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-05-30 22:15 修改: 2026-06-17 05:53
|
| libmount1 |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libncurses6 |
CVE-2025-69720 |
高危 |
6.2+20201114-2+deb11u2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libncursesw6 |
CVE-2025-69720 |
高危 |
6.2+20201114-2+deb11u2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libnghttp2-14 |
CVE-2026-27135 |
高危 |
1.43.0-1+deb11u2 |
1.43.0-1+deb11u3 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-18 18:16 修改: 2026-06-30 03:17
|
| busybox |
CVE-2026-26158 |
高危 |
1:1.30.1-6+deb11u1 |
|
busybox: BusyBox: Arbitrary file modification and privilege escalation via unvalidated tar archive entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26158
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-11 21:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-geoip |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-http-geoip |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-geoip |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-geoip |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-http-geoip |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-http-geoip |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-http-geoip |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| busybox |
CVE-2026-29004 |
高危 |
1:1.30.1-6+deb11u1 |
|
BusyBox: BusyBox: Arbitrary Code Execution via DHCPv6 Client Heap Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29004
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-04 18:16 修改: 2026-06-30 03:18
|
| libnginx-mod-http-image-filter |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-http-image-filter |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-image-filter |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-image-filter |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-http-image-filter |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-http-image-filter |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-http-image-filter |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| bash |
CVE-2022-3715 |
高危 |
5.1-2+deb11u1 |
|
bash: a heap-buffer-overflow in valid_parameter_transform
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3715
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-01-05 15:15 修改: 2026-06-17 05:00
|
| libnginx-mod-http-xslt-filter |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-http-xslt-filter |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-xslt-filter |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-xslt-filter |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-http-xslt-filter |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-http-xslt-filter |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-http-xslt-filter |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| curl |
CVE-2022-42916 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS bypass via IDN
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42916
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-10-29 02:15 修改: 2026-06-17 05:05
|
| libnginx-mod-mail |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-mail |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-mail |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-mail |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-mail |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-mail |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-mail |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| curl |
CVE-2022-43551 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS bypass via IDN
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-12-23 15:15 修改: 2026-06-17 05:06
|
| libnginx-mod-stream |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-stream |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-stream |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-stream |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-stream |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| curl |
CVE-2026-12064 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: SSH host verification bypass when using schemeless URLs with SFTP/SCP
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:43
|
| libnginx-mod-stream-geoip |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| libnginx-mod-stream-geoip |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream-geoip |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream-geoip |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| libnginx-mod-stream-geoip |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| libnginx-mod-stream-geoip |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| libnginx-mod-stream-geoip |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| libpam-cap |
CVE-2026-4878 |
高危 |
1:2.44-1+deb11u1 |
|
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-09 16:16 修改: 2026-07-10 12:17
|
| libpam-modules |
CVE-2025-6020 |
高危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam-modules-bin |
CVE-2025-6020 |
高危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam-runtime |
CVE-2025-6020 |
高危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam0g |
CVE-2025-6020 |
高危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| curl |
CVE-2026-5773 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
|
| curl |
CVE-2026-6276 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| libperl5.32 |
CVE-2026-42497 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
|
| libperl5.32 |
CVE-2026-48962 |
高危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20
|
| libperl5.32 |
CVE-2026-9538 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
|
| libpng16-16 |
CVE-2025-64720 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u1 |
libpng: LIBPNG buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55
|
| libpng16-16 |
CVE-2025-65018 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u1 |
libpng: LIBPNG heap buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55
|
| libpng16-16 |
CVE-2025-66293 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u1 |
libpng: LIBPNG out-of-bounds read in png_image_read_composite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-03 21:15 修改: 2026-06-17 09:56
|
| libpng16-16 |
CVE-2026-22695 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u2 |
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20
|
| libpng16-16 |
CVE-2026-22801 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u2 |
libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20
|
| libpng16-16 |
CVE-2026-25646 |
高危 |
1.6.37-3 |
1.6.37-3+deb11u2 |
libpng: LIBPNG has a heap buffer overflow in png_set_quantize
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-10 18:16 修改: 2026-06-30 03:17
|
| libsmartcols1 |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libssh2-1 |
CVE-2026-55199 |
高危 |
1.9.0-2+deb11u1 |
|
libssh2: libssh2: Denial of Service via crafted SSH_MSG_EXT_INFO message
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55199
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 20:17 修改: 2026-06-26 19:16
|
| libssh2-1 |
CVE-2026-55200 |
高危 |
1.9.0-2+deb11u1 |
|
libssh2: libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55200
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 20:17 修改: 2026-07-01 05:16
|
| libssh2-1 |
CVE-2026-7598 |
高危 |
1.9.0-2+deb11u1 |
|
libssh2: integer overflow via large username or password arguments
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-01 22:16 修改: 2026-06-30 03:21
|
| libssl1.1 |
CVE-2025-69421 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2026-28387 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28388 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28389 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28390 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-45447 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-09 17:17 修改: 2026-07-08 13:16
|
| libtiff5 |
CVE-2023-52355 |
高危 |
4.2.0-1+deb11u6 |
|
libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52355
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-01-25 20:15 修改: 2026-06-17 06:42
|
| libtiff5 |
CVE-2025-9900 |
高危 |
4.2.0-1+deb11u6 |
4.2.0-1+deb11u7 |
libtiff: Libtiff Write-What-Where
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9900
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-09-23 17:15 修改: 2026-06-29 21:16
|
| libtiff5 |
CVE-2026-12912 |
高危 |
4.2.0-1+deb11u6 |
|
libtiff: libtiff: Heap-based buffer overflow via crafted PixarLog-compressed TIFF image
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12912
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-29 17:16 修改: 2026-07-03 13:16
|
| libtiff5 |
CVE-2026-4775 |
高危 |
4.2.0-1+deb11u6 |
4.2.0-1+deb11u8 |
libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4775
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:20
|
| libtinfo6 |
CVE-2025-69720 |
高危 |
6.2+20201114-2+deb11u2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libuuid1 |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libxml2 |
CVE-2025-32414 |
高危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u7 |
libxml2: Out-of-Bounds Read in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-08 03:15 修改: 2026-06-17 09:11
|
| libxml2 |
CVE-2025-32415 |
高危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u7 |
libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-17 17:15 修改: 2026-06-17 09:11
|
| libxml2 |
CVE-2025-49794 |
高危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u8 |
libxml: Heap use after free (UAF) leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 16:15 修改: 2026-06-29 21:16
|
| libxml2 |
CVE-2025-49796 |
高危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u8 |
libxml: Type confusion leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 16:15 修改: 2026-06-29 21:16
|
| libxslt1.1 |
CVE-2025-7424 |
高危 |
1.1.34-4+deb11u2 |
1.1.34-4+deb11u3 |
libxslt: Type confusion in xmlNode.psvi between stylesheet and source nodes
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7424
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-10 14:15 修改: 2026-06-29 21:16
|
| libzstd1 |
CVE-2022-4899 |
高危 |
1.4.8+dfsg-2.1 |
|
zstd: mysql: buffer overrun in util.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-03-31 20:15 修改: 2026-06-17 05:22
|
| mount |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| ncurses-base |
CVE-2025-69720 |
高危 |
6.2+20201114-2+deb11u2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| ncurses-bin |
CVE-2025-69720 |
高危 |
6.2+20201114-2+deb11u2 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| curl |
CVE-2026-8286 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Insecure connection establishment due to TLS configuration mismatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42
|
| nginx |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| nginx |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| nginx |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| nginx |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| nginx |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| curl |
CVE-2026-8927 |
高危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Information disclosure due to uncleared proxy authentication state
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21
|
| nginx-common |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| nginx-common |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-common |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-common |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| nginx-common |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| nginx-common |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| nginx-common |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| curl |
CVE-2026-8932 |
高危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Security feature bypass due to improper mTLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:18
|
| nginx-core |
CVE-2024-33452 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
lua-nginx-module: HTTP request smuggling via a crafted HEAD request
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33452
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-22 16:15 修改: 2026-06-17 07:31
|
| nginx-core |
CVE-2026-27651 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-core |
CVE-2026-27654 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-core |
CVE-2026-32647 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:18
|
| nginx-core |
CVE-2026-42055 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Arbitrary code execution or Denial of Service via heap-based buffer overflow with crafted HTTP/2 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-07-09 13:17
|
| nginx-core |
CVE-2026-42946 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:12
|
| nginx-core |
CVE-2026-9256 |
高危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u7 |
nginx: ngx_http_rewrite_module: code execution and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-22 15:16 修改: 2026-06-30 03:21
|
| openssl |
CVE-2025-69421 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| openssl |
CVE-2026-28387 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| openssl |
CVE-2026-28388 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| openssl |
CVE-2026-28389 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| openssl |
CVE-2026-28390 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u7 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| openssl |
CVE-2026-45447 |
高危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-09 17:17 修改: 2026-07-08 13:16
|
| curl |
CVE-2026-9547 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Man-in-the-middle attack via SSH host key bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52
|
| gpgv |
CVE-2025-68973 |
高危 |
2.2.27-2+deb11u2 |
2.2.27-2+deb11u3 |
GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59
|
| perl |
CVE-2026-42497 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
|
| perl |
CVE-2026-48962 |
高危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20
|
| perl |
CVE-2026-9538 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
|
| gzip |
CVE-2026-41992 |
高危 |
1.10-4+deb11u1 |
|
GNU gzip contains a global buffer overflow vulnerability in the LZH de ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libacl1 |
CVE-2026-54369 |
高危 |
2.2.53-10 |
|
acl: Symlink traversal privilege escalation via libacl functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54369
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 14:16 修改: 2026-07-02 12:17
|
| perl-base |
CVE-2026-42497 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
|
| perl-base |
CVE-2026-48962 |
高危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20
|
| perl-base |
CVE-2026-9538 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
|
| libblkid1 |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libbpf0 |
CVE-2022-3534 |
高危 |
1:0.3-2 |
0.3-2+deb11u1 |
Kernel: use-after-free in btf_dump_name_dups in tools/lib/bpf/btf_dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3534
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-10-17 09:15 修改: 2026-06-17 04:59
|
| perl-modules-5.32 |
CVE-2026-42497 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
|
| perl-modules-5.32 |
CVE-2026-48962 |
高危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20
|
| perl-modules-5.32 |
CVE-2026-9538 |
高危 |
5.32.1-4+deb11u4 |
|
perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
|
| libcap2 |
CVE-2026-4878 |
高危 |
1:2.44-1+deb11u1 |
|
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-09 16:16 修改: 2026-07-10 12:17
|
| libcap2-bin |
CVE-2026-4878 |
高危 |
1:2.44-1+deb11u1 |
|
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-09 16:16 修改: 2026-07-10 12:17
|
| php7.4 |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4 |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4 |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4 |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4 |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| bsdutils |
CVE-2026-53615 |
高危 |
1:2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libcurl4 |
CVE-2022-42916 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS bypass via IDN
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42916
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-10-29 02:15 修改: 2026-06-17 05:05
|
| php7.4-bcmath |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-bcmath |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-bcmath |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-bcmath |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-bcmath |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libcurl4 |
CVE-2022-43551 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS bypass via IDN
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-12-23 15:15 修改: 2026-06-17 05:06
|
| libcurl4 |
CVE-2026-12064 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: SSH host verification bypass when using schemeless URLs with SFTP/SCP
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:43
|
| php7.4-cli |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-cli |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-cli |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-cli |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-cli |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libcurl4 |
CVE-2026-5773 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
|
| libcurl4 |
CVE-2026-6276 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| php7.4-common |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-common |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-common |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-common |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-common |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libcurl4 |
CVE-2026-8286 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Insecure connection establishment due to TLS configuration mismatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42
|
| libcurl4 |
CVE-2026-8927 |
高危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Information disclosure due to uncleared proxy authentication state
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21
|
| php7.4-curl |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-curl |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-curl |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-curl |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-curl |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libcurl4 |
CVE-2026-8932 |
高危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Security feature bypass due to improper mTLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:18
|
| libcurl4 |
CVE-2026-9547 |
高危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Man-in-the-middle attack via SSH host key bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52
|
| php7.4-fpm |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-fpm |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-fpm |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-fpm |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-fpm |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| busybox |
CVE-2021-42383 |
高危 |
1:1.30.1-6+deb11u1 |
|
busybox: use-after-free in awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate()
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42383
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-11-15 21:15 修改: 2026-06-17 04:09
|
| libexpat1 |
CVE-2025-59375 |
高危 |
2.2.10-2+deb11u6 |
|
firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46
|
| php7.4-gd |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-gd |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-gd |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-gd |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-gd |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libexpat1 |
CVE-2026-25210 |
高危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24
|
| libexpat1 |
CVE-2026-45186 |
高危 |
2.2.10-2+deb11u6 |
|
libexpat: denial of service via crafted XML input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 07:16 修改: 2026-06-30 03:20
|
| php7.4-json |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-json |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-json |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-json |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-json |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libexpat1 |
CVE-2026-56131 |
高危 |
2.2.10-2+deb11u6 |
|
libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| libexpat1 |
CVE-2026-56407 |
高危 |
2.2.10-2+deb11u6 |
|
libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28
|
| php7.4-mbstring |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-mbstring |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-mbstring |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-mbstring |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-mbstring |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libexpat1 |
CVE-2026-56408 |
高危 |
2.2.10-2+deb11u6 |
|
libexpat before 2.8.2 has an integer overflow in copyString.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27
|
| libfreetype6 |
CVE-2025-27363 |
高危 |
2.10.4+dfsg-1+deb11u1 |
2.10.4+dfsg-1+deb11u2 |
freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27363
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-03-11 14:15 修改: 2026-06-17 09:03
|
| php7.4-opcache |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-opcache |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-opcache |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-opcache |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-opcache |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libgcrypt20 |
CVE-2021-33560 |
高危 |
1.8.7-6 |
|
libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2021-06-08 11:15 修改: 2026-06-17 03:54
|
| libgd3 |
CVE-2021-40145 |
高危 |
2.3.0-2 |
2.3.0-2+deb11u1 |
gdImageGd2Ptr in gd_gd2.c in the GD Graphics Library (aka LibGD) throu ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40145
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-26 01:15 修改: 2026-06-17 04:06
|
| php7.4-readline |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-readline |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-readline |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-readline |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-readline |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| busybox |
CVE-2023-39810 |
高危 |
1:1.30.1-6+deb11u1 |
|
busybox: CPIO command of Busybox allows attackers to execute a directory traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39810
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-08-28 19:15 修改: 2026-07-09 01:18
|
| busybox |
CVE-2026-26157 |
高危 |
1:1.30.1-6+deb11u1 |
|
busybox: BusyBox: Arbitrary file overwrite and potential code execution via incomplete path sanitization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26157
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-11 21:16 修改: 2026-06-30 03:17
|
| php7.4-xml |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-xml |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-xml |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-xml |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-xml |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| libgnutls30 |
CVE-2025-32988 |
高危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u8 |
gnutls: Vulnerability in GnuTLS otherName SAN export
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-10 08:15 修改: 2026-06-30 01:16
|
| libgnutls30 |
CVE-2025-32990 |
高危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u8 |
gnutls: Vulnerability in GnuTLS certtool template parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-10 10:15 修改: 2026-06-30 01:16
|
| php7.4-zip |
CVE-2025-14178 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u10 |
php: heap-based buffer overflow in array_merge()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14178
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-27 20:15 修改: 2026-06-17 08:35
|
| php7.4-zip |
CVE-2025-1735 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: pgsql extension does not check for errors during escaping
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:39
|
| php7.4-zip |
CVE-2026-7258 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7258
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:02
|
| php7.4-zip |
CVE-2026-7262 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: NULL pointer dereference in SOAP apache:Map decoder with missing <value>
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7262
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| php7.4-zip |
CVE-2026-7568 |
高危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
php: signed integer overflow in metaphone()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7568
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-07-02 12:17
|
| util-linux |
CVE-2026-53615 |
高危 |
2.36.1-8+deb11u2 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgnutls30 |
CVE-2026-33846 |
高危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-04 10:15 修改: 2026-07-07 12:16
|
| libpng16-16 |
CVE-2025-64505 |
中危 |
1.6.37-3 |
1.6.37-3+deb11u1 |
libpng: LIBPNG heap buffer overflow via malformed palette index
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54
|
| libpng16-16 |
CVE-2025-64506 |
中危 |
1.6.37-3 |
1.6.37-3+deb11u1 |
libpng: LIBPNG heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54
|
| libpng16-16 |
CVE-2026-33416 |
中危 |
1.6.37-3 |
1.6.37-3+deb11u3 |
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37
|
| libpng16-16 |
CVE-2026-33636 |
中危 |
1.6.37-3 |
1.6.37-3+deb11u3 |
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37
|
| libpng16-16 |
CVE-2026-34757 |
中危 |
1.6.37-3 |
1.6.37-3+deb11u4 |
libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-09 15:16 修改: 2026-06-17 10:39
|
| libpng16-16 |
CVE-2026-40930 |
中危 |
1.6.37-3 |
|
LIBPNG is a reference library for use in applications that process PNG ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40930
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-04 16:16 修改: 2026-06-17 10:45
|
| libgd3 |
CVE-2021-38115 |
中危 |
2.3.0-2 |
2.3.0-2+deb11u1 |
read_header_tga in gd_tga.c in the GD Graphics Library (aka LibGD) thr ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38115
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-04 21:15 修改: 2026-06-17 04:01
|
| libsmartcols1 |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libsmartcols1 |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libsodium23 |
CVE-2025-69277 |
中危 |
1.0.18-1 |
1.0.18-1+deb11u1 |
libsodium: pynacl: libsodium: Improper validation of elliptic curve points could lead to data integrity or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69277
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-12-31 06:15 修改: 2026-06-17 10:00
|
| libgd3 |
CVE-2021-40812 |
中危 |
2.3.0-2 |
2.3.0-2+deb11u1 |
The GD Graphics Library (aka LibGD) through 2.3.2 has an out-of-bounds ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40812
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-09-08 21:15 修改: 2026-06-17 04:07
|
| libacl1 |
CVE-2026-54370 |
中危 |
2.2.53-10 |
|
acl: TOCTOU Symlink Traversal via getfacl/setfacl
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54370
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 14:16 修改: 2026-06-29 19:22
|
| libattr1 |
CVE-2026-54371 |
中危 |
1:2.4.48-6 |
|
attr: Symlink Traversal Privilege Escalation via getfattr and setfattr
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54371
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 14:16 修改: 2026-07-03 13:17
|
| libssh2-1 |
CVE-2025-15661 |
中危 |
1.9.0-2+deb11u1 |
|
libssh2: libssh2: Information disclosure and denial of service via crafted SFTP response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15661
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-18 21:16 修改: 2026-06-26 02:35
|
| bzip2 |
CVE-2026-42250 |
中危 |
1.0.8-4 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47
|
| libblkid1 |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libblkid1 |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| bsdutils |
CVE-2026-3184 |
中危 |
1:2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libgnutls30 |
CVE-2025-14831 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u9 |
gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-02-09 15:16 修改: 2026-06-30 00:16
|
| libssl1.1 |
CVE-2025-69419 |
中危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2025-9230 |
中危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u4 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libsystemd0 |
CVE-2025-4598 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u7 |
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-30 14:15 修改: 2026-06-30 11:16
|
| libsystemd0 |
CVE-2026-29111 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
|
| libsystemd0 |
CVE-2026-40225 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-4105 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
|
| libgnutls30 |
CVE-2025-6395 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u8 |
gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-10 16:15 修改: 2026-06-30 02:16
|
| libgnutls30 |
CVE-2026-42011 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-07 15:16 修改: 2026-06-30 03:19
|
| libgnutls30 |
CVE-2026-42012 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19
|
| libgnutls30 |
CVE-2026-42013 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19
|
| libtiff5 |
CVE-2022-40090 |
中危 |
4.2.0-1+deb11u6 |
|
libtiff: infinite loop via a crafted TIFF file
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40090
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-08-22 19:16 修改: 2026-06-17 05:00
|
| libtiff5 |
CVE-2023-6277 |
中危 |
4.2.0-1+deb11u6 |
|
libtiff: Out-of-memory in TIFFOpen via a craft file
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-11-24 19:15 修改: 2026-06-17 06:50
|
| libgnutls30 |
CVE-2026-42014 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-16 02:16 修改: 2026-06-30 03:19
|
| libtinfo6 |
CVE-2023-50495 |
中危 |
6.2+20201114-2+deb11u2 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libudev1 |
CVE-2025-4598 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u7 |
systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-30 14:15 修改: 2026-06-30 11:16
|
| libudev1 |
CVE-2026-29111 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
|
| libudev1 |
CVE-2026-40225 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libudev1 |
CVE-2026-40226 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libudev1 |
CVE-2026-4105 |
中危 |
247.3-7+deb11u6 |
247.3-7+deb11u8 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
|
| libgnutls30 |
CVE-2026-42015 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 22:16 修改: 2026-07-09 07:16
|
| libuuid1 |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libuuid1 |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libgnutls30 |
CVE-2026-5260 |
中危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u10 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-26 22:16 修改: 2026-07-09 07:16
|
| libbpf0 |
CVE-2021-45940 |
中危 |
1:0.3-2 |
|
libbpf: heap-based buffer overflow (4 bytes) in __bpf_object__open
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45940
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-01-01 01:15 修改: 2026-06-17 04:14
|
| libbpf0 |
CVE-2021-45941 |
中危 |
1:0.3-2 |
|
libbpf: heap-based buffer overflow (8 bytes) in __bpf_object__open
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45941
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-01-01 01:15 修改: 2026-06-17 04:14
|
| libgssapi-krb5-2 |
CVE-2025-3576 |
中危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u7 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16
|
| libxml2 |
CVE-2025-6021 |
中危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u8 |
libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-12 13:15 修改: 2026-06-30 11:16
|
| libxml2 |
CVE-2025-9714 |
中危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u9 |
libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9714
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-09-10 19:15 修改: 2026-06-17 10:09
|
| libxml2 |
CVE-2026-0990 |
中危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u10 |
libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-15 15:15 修改: 2026-06-30 20:18
|
| libxml2 |
CVE-2026-1757 |
中危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u10 |
libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-02 13:15 修改: 2026-06-17 10:16
|
| libxml2 |
CVE-2026-6653 |
中危 |
2.9.10+dfsg-6.7+deb11u6 |
|
libxml2: mingw-libxml2: libxml2: Denial of Service via crafted XML input due to use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6653
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-22 14:17 修改: 2026-06-22 18:16
|
| libxpm4 |
CVE-2026-4367 |
中危 |
1:3.5.12-1.1+deb11u1 |
|
libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-16 19:16 修改: 2026-06-26 22:16
|
| libicu67 |
CVE-2025-5222 |
中危 |
67.1-7 |
67.1-7+deb11u1 |
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-05-27 21:15 修改: 2026-06-30 05:17
|
| libxslt1.1 |
CVE-2023-40403 |
中危 |
1.1.34-4+deb11u2 |
1.1.34-4+deb11u3 |
libxslt: Processing web content may disclose sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40403
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-09-27 15:19 修改: 2026-06-17 06:17
|
| libxslt1.1 |
CVE-2025-10911 |
中危 |
1.1.34-4+deb11u2 |
|
libxslt: use-after-free with key data stored cross-RVT
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10911
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-09-25 16:15 修改: 2026-06-30 00:16
|
| libjpeg62-turbo |
CVE-2021-46822 |
中危 |
1:2.0.6-4 |
|
libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46822
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-06-18 16:15 修改: 2026-06-17 04:15
|
| login |
CVE-2023-4641 |
中危 |
1:4.8.1-1 |
1:4.8.1-1+deb11u1 |
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-12-27 16:15 修改: 2026-06-17 06:38
|
| libbpf0 |
CVE-2022-3606 |
中危 |
1:0.3-2 |
0.3-2+deb11u1 |
kernel: libbpf: NULL pointer dereference in find_prog_by_sec_insn
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3606
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-10-19 09:15 修改: 2026-06-17 04:59
|
| mount |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| mount |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| mount |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libbz2-1.0 |
CVE-2026-42250 |
中危 |
1.0.8-4 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47
|
| ncurses-base |
CVE-2023-50495 |
中危 |
6.2+20201114-2+deb11u2 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libk5crypto3 |
CVE-2025-3576 |
中危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u7 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16
|
| ncurses-bin |
CVE-2023-50495 |
中危 |
6.2+20201114-2+deb11u2 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libc-bin |
CVE-2023-4806 |
中危 |
2.31-13+deb11u11 |
|
glibc: potential use-after-free in getaddrinfo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-18 17:15 修改: 2026-06-17 06:38
|
| libc-bin |
CVE-2023-4813 |
中危 |
2.31-13+deb11u11 |
|
glibc: potential use-after-free in gaih_inet()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-12 22:15 修改: 2026-06-17 06:38
|
| libkrb5-3 |
CVE-2025-3576 |
中危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u7 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16
|
| libc-bin |
CVE-2025-0395 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u12 |
glibc: buffer overflow in the GNU C Library's assert()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-01-22 13:15 修改: 2026-06-17 08:26
|
| libc-bin |
CVE-2025-4802 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u13 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-16 20:15 修改: 2026-06-17 09:34
|
| libkrb5support0 |
CVE-2025-3576 |
中危 |
1.18.3-6+deb11u6 |
1.18.3-6+deb11u7 |
krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16
|
| libc-bin |
CVE-2025-8058 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: Double free in glibc
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-23 20:15 修改: 2026-06-17 10:06
|
| libc-bin |
CVE-2026-0915 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
|
| nginx |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| nginx |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| nginx |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| nginx |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| nginx |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| liblzma5 |
CVE-2026-34743 |
中危 |
5.2.5-2.1~deb11u1 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libmount1 |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libmount1 |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libncurses6 |
CVE-2023-50495 |
中危 |
6.2+20201114-2+deb11u2 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libc-bin |
CVE-2026-5450 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
|
| nginx-common |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| nginx-common |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| nginx-common |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-common |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| nginx-common |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| nginx-common |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libncursesw6 |
CVE-2023-50495 |
中危 |
6.2+20201114-2+deb11u2 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libc-bin |
CVE-2026-5928 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
|
| libnghttp2-14 |
CVE-2026-58055 |
中危 |
1.43.0-1+deb11u2 |
|
nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libc6 |
CVE-2023-4806 |
中危 |
2.31-13+deb11u11 |
|
glibc: potential use-after-free in getaddrinfo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-18 17:15 修改: 2026-06-17 06:38
|
| libc6 |
CVE-2023-4813 |
中危 |
2.31-13+deb11u11 |
|
glibc: potential use-after-free in gaih_inet()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-12 22:15 修改: 2026-06-17 06:38
|
| libc6 |
CVE-2025-0395 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u12 |
glibc: buffer overflow in the GNU C Library's assert()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-01-22 13:15 修改: 2026-06-17 08:26
|
| libc6 |
CVE-2025-4802 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u13 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-16 20:15 修改: 2026-06-17 09:34
|
| nginx-core |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| nginx-core |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| nginx-core |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| nginx-core |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| nginx-core |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| nginx-core |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libc6 |
CVE-2025-8058 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: Double free in glibc
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-23 20:15 修改: 2026-06-17 10:06
|
| libc6 |
CVE-2026-0915 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
|
| libc6 |
CVE-2026-4046 |
中危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libnginx-mod-http-geoip |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-http-geoip |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-http-geoip |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| openssl |
CVE-2025-69419 |
中危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| openssl |
CVE-2025-9230 |
中危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u4 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| passwd |
CVE-2023-4641 |
中危 |
1:4.8.1-1 |
1:4.8.1-1+deb11u1 |
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-12-27 16:15 修改: 2026-06-17 06:38
|
| libnginx-mod-http-geoip |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| libnginx-mod-http-geoip |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-http-geoip |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libc6 |
CVE-2026-5435 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc6 |
CVE-2026-5450 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
|
| perl |
CVE-2025-15649 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
|
| perl |
CVE-2025-40909 |
中危 |
5.32.1-4+deb11u4 |
5.32.1-4+deb11u5 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-05-30 13:15 修改: 2026-06-17 09:22
|
| perl |
CVE-2026-12087 |
中危 |
5.32.1-4+deb11u4 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
|
| perl |
CVE-2026-48959 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl |
CVE-2026-48961 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl |
CVE-2026-7010 |
中危 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
|
| libc6 |
CVE-2026-5928 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
|
| libc6 |
CVE-2026-6238 |
中危 |
2.31-13+deb11u11 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| bsdutils |
CVE-2026-13595 |
中危 |
1:2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| curl |
CVE-2023-23915 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS amnesia with --parallel
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-02-23 20:15 修改: 2026-06-17 05:38
|
| perl-base |
CVE-2025-15649 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
|
| perl-base |
CVE-2025-40909 |
中危 |
5.32.1-4+deb11u4 |
5.32.1-4+deb11u5 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-30 13:15 修改: 2026-06-17 09:22
|
| perl-base |
CVE-2026-12087 |
中危 |
5.32.1-4+deb11u4 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
|
| perl-base |
CVE-2026-48959 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-base |
CVE-2026-48961 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-base |
CVE-2026-7010 |
中危 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
|
| curl |
CVE-2023-46219 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: excessively long file name may lead to unknown HSTS status
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-12-12 02:15 修改: 2026-06-17 06:30
|
| libnginx-mod-http-image-filter |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-http-image-filter |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-http-image-filter |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-image-filter |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| perl-modules-5.32 |
CVE-2025-15649 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
|
| perl-modules-5.32 |
CVE-2025-40909 |
中危 |
5.32.1-4+deb11u4 |
5.32.1-4+deb11u5 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-05-30 13:15 修改: 2026-06-17 09:22
|
| perl-modules-5.32 |
CVE-2026-12087 |
中危 |
5.32.1-4+deb11u4 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
|
| perl-modules-5.32 |
CVE-2026-48959 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-modules-5.32 |
CVE-2026-48961 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-modules-5.32 |
CVE-2026-7010 |
中危 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
|
| libnginx-mod-http-image-filter |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-http-image-filter |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| curl |
CVE-2024-9681 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-11-06 08:15 修改: 2026-06-17 08:25
|
| curl |
CVE-2026-10536 |
中危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| curl |
CVE-2026-11856 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure via incorrect Digest authentication header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:43
|
| curl |
CVE-2026-1965 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16
|
| curl |
CVE-2026-3783 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
|
| php7.4 |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4 |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4 |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4 |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| curl |
CVE-2026-3784 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
|
| curl |
CVE-2026-4873 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57
|
| curl |
CVE-2026-5545 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
|
| libnginx-mod-http-xslt-filter |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-http-xslt-filter |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-http-xslt-filter |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-http-xslt-filter |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| php7.4-bcmath |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-bcmath |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-bcmath |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-bcmath |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libnginx-mod-http-xslt-filter |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-http-xslt-filter |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libcurl4 |
CVE-2023-23915 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS amnesia with --parallel
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-02-23 20:15 修改: 2026-06-17 05:38
|
| libcurl4 |
CVE-2023-46219 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: excessively long file name may lead to unknown HSTS status
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-12-12 02:15 修改: 2026-06-17 06:30
|
| libcurl4 |
CVE-2024-9681 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-11-06 08:15 修改: 2026-06-17 08:25
|
| libcurl4 |
CVE-2026-10536 |
中危 |
7.74.0-1.3+deb11u14 |
|
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| libcurl4 |
CVE-2026-11856 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure via incorrect Digest authentication header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:43
|
| php7.4-cli |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-cli |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-cli |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-cli |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libcurl4 |
CVE-2026-1965 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16
|
| libcurl4 |
CVE-2026-3783 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
|
| libcurl4 |
CVE-2026-3784 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Unauthorized access due to improper HTTP proxy connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
|
| libnginx-mod-mail |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-mail |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-mail |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-mail |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| php7.4-common |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-common |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-common |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-common |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libnginx-mod-mail |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-mail |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libcurl4 |
CVE-2026-4873 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Information disclosure due to incorrect TLS connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57
|
| libcurl4 |
CVE-2026-5545 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
|
| libcurl4 |
CVE-2026-6253 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| libcurl4 |
CVE-2026-6429 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| libcurl4 |
CVE-2026-7168 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01
|
| php7.4-curl |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-curl |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-curl |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-curl |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libcurl4 |
CVE-2026-8924 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Cookie injection via malicious HTTP server using super cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06
|
| curl |
CVE-2026-6253 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| curl |
CVE-2026-6429 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Credential leak via reused proxy connection during HTTP redirects
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
|
| libnginx-mod-stream |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-stream |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-stream |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| php7.4-fpm |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-fpm |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-fpm |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-fpm |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libnginx-mod-stream |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-stream |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| curl |
CVE-2026-7168 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01
|
| curl |
CVE-2026-8924 |
中危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Cookie injection via malicious HTTP server using super cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06
|
| busybox |
CVE-2023-42363 |
中危 |
1:1.30.1-6+deb11u1 |
|
busybox: use-after-free in awk
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-11-27 22:15 修改: 2026-06-17 06:23
|
| gpgv |
CVE-2025-30258 |
中危 |
2.2.27-2+deb11u2 |
|
gnupg: verification DoS due to a malicious subkey in the keyring
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08
|
| gpgv |
CVE-2025-68972 |
中危 |
2.2.27-2+deb11u2 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59
|
| php7.4-gd |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-gd |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-gd |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-gd |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libexpat1 |
CVE-2024-50602 |
中危 |
2.2.10-2+deb11u6 |
2.2.10-2+deb11u7 |
libexpat: expat: DoS via XML_ResumeParser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-10-27 05:15 修改: 2026-06-17 08:04
|
| libexpat1 |
CVE-2024-8176 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-03-14 09:15 修改: 2026-06-30 00:16
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| libnginx-mod-stream-geoip |
CVE-2020-36309 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u5 |
ngx_http_lua_module (aka lua-nginx-module) before 0.10.16 in OpenResty ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36309
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-04-06 19:15 修改: 2026-06-17 03:15
|
| libnginx-mod-stream-geoip |
CVE-2026-1642 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-04 15:16 修改: 2026-06-17 10:16
|
| libnginx-mod-stream-geoip |
CVE-2026-27784 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-30 03:17
|
| libnginx-mod-stream-geoip |
CVE-2026-40701 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_ssl_module: data corruption and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-23 13:57
|
| php7.4-json |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-json |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-json |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-json |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libnginx-mod-stream-geoip |
CVE-2026-42934 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: ngx_http_charset_module: information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-13 16:16 修改: 2026-06-18 14:07
|
| libnginx-mod-stream-geoip |
CVE-2026-48142 |
中危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u8 |
nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.23.22-1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 19:16 修改: 2026-07-10 01:16
|
| libexpat1 |
CVE-2026-32776 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| libexpat1 |
CVE-2026-32777 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| libpam-modules |
CVE-2024-10041 |
中危 |
1.4.0-9+deb11u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam-modules |
CVE-2024-22365 |
中危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| php7.4-mbstring |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-mbstring |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-mbstring |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-mbstring |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libpam-modules |
CVE-2026-54411 |
中危 |
1.4.0-9+deb11u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2026-32778 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| libpam-modules-bin |
CVE-2024-10041 |
中危 |
1.4.0-9+deb11u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam-modules-bin |
CVE-2024-22365 |
中危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam-modules-bin |
CVE-2026-54411 |
中危 |
1.4.0-9+deb11u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2026-50219 |
中危 |
2.2.10-2+deb11u6 |
|
expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57
|
| libpam-runtime |
CVE-2024-10041 |
中危 |
1.4.0-9+deb11u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| php7.4-opcache |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-opcache |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-opcache |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-opcache |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libpam-runtime |
CVE-2024-22365 |
中危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam-runtime |
CVE-2026-54411 |
中危 |
1.4.0-9+deb11u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2026-56132 |
中危 |
2.2.10-2+deb11u6 |
|
expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| libpam0g |
CVE-2024-10041 |
中危 |
1.4.0-9+deb11u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam0g |
CVE-2024-22365 |
中危 |
1.4.0-9+deb11u1 |
1.4.0-9+deb11u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam0g |
CVE-2026-54411 |
中危 |
1.4.0-9+deb11u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2026-56403 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| php7.4-readline |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-readline |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-readline |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-readline |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libexpat1 |
CVE-2026-56404 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat before 2.8.2 has an integer overflow in addBinding.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| libexpat1 |
CVE-2026-56405 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14
|
| libexpat1 |
CVE-2026-56406 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29
|
| libexpat1 |
CVE-2026-56409 |
中危 |
2.2.10-2+deb11u6 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21
|
| libperl5.32 |
CVE-2025-15649 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
|
| libperl5.32 |
CVE-2025-40909 |
中危 |
5.32.1-4+deb11u4 |
5.32.1-4+deb11u5 |
perl: Perl threads have a working directory race condition where file operations may target unintended paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-05-30 13:15 修改: 2026-06-17 09:22
|
| libperl5.32 |
CVE-2026-12087 |
中危 |
5.32.1-4+deb11u4 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
|
| php7.4-xml |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-xml |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-xml |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-xml |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| libperl5.32 |
CVE-2026-48959 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| libperl5.32 |
CVE-2026-48961 |
中危 |
5.32.1-4+deb11u4 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| libperl5.32 |
CVE-2026-7010 |
中危 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
|
| libexpat1 |
CVE-2026-56410 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18
|
| libexpat1 |
CVE-2026-56411 |
中危 |
2.2.10-2+deb11u6 |
|
expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16
|
| libexpat1 |
CVE-2026-56412 |
中危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31
|
| busybox |
CVE-2023-42366 |
中危 |
1:1.30.1-6+deb11u1 |
|
busybox: A heap-buffer-overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-11-27 23:15 修改: 2026-06-17 06:23
|
| php7.4-zip |
CVE-2024-2408 |
中危 |
7.4.33-1+deb11u8 |
|
php: potential exposure to Marvin attack via unsafe implementation of RSA decryption API
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2408
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-06-09 20:15 修改: 2026-06-17 07:24
|
| php7.4-zip |
CVE-2025-1220 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: PHP Hostname Null Character Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1220
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 23:15 修改: 2026-06-17 08:38
|
| php7.4-zip |
CVE-2025-6491 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u9 |
php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6491
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-13 22:15 修改: 2026-06-17 10:02
|
| php7.4-zip |
CVE-2026-6735 |
中危 |
7.4.33-1+deb11u8 |
7.4.33-1+deb11u11 |
PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6735
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-05-10 05:16 修改: 2026-06-17 11:01
|
| sed |
CVE-2026-5958 |
中危 |
4.7-1 |
|
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-20 12:16 修改: 2026-06-17 10:59
|
| tar |
CVE-2026-5704 |
中危 |
1.34+dfsg-1+deb11u1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| gzip |
CVE-2026-41991 |
中危 |
1.10-4+deb11u1 |
|
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| util-linux |
CVE-2026-13595 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| util-linux |
CVE-2026-27456 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| util-linux |
CVE-2026-3184 |
中危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| xz-utils |
CVE-2026-34743 |
中危 |
5.2.5-2.1~deb11u1 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
|
| busybox |
CVE-2024-58251 |
中危 |
1:1.30.1-6+deb11u1 |
|
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14
|
| zlib1g |
CVE-2026-27171 |
中危 |
1:1.2.11.dfsg-2+deb11u2 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|
| libgssapi-krb5-2 |
CVE-2026-11850 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| curl |
CVE-2025-14017 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35
|
| libjbig0 |
CVE-2017-9937 |
低危 |
2.1-3.1+b2 |
|
libtiff: memory malloc failure in tif_jbig.c could cause DOS.
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9937
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-06-26 12:29 修改: 2026-06-17 01:29
|
| nginx |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| nginx |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| nginx |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| nginx |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| nginx |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| curl |
CVE-2025-14524 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
|
| curl |
CVE-2025-15079 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
|
| curl |
CVE-2025-15224 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
|
| curl |
CVE-2026-8458 |
低危 |
7.74.0-1.3+deb11u14 |
|
libcurl might in some circumstances reuse the wrong connection when as ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12
|
| libnginx-mod-stream |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| libnginx-mod-stream |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-stream |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| libnginx-mod-stream |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| libnginx-mod-stream |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| libk5crypto3 |
CVE-2018-5709 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libk5crypto3 |
CVE-2024-26458 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libk5crypto3 |
CVE-2024-26461 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libk5crypto3 |
CVE-2026-11850 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| dpkg |
CVE-2025-6297 |
低危 |
1.20.13 |
1.20.14 |
It was discovered that dpkg-deb does not properly sanitize directory p ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-07-01 17:15 修改: 2026-07-08 09:16
|
| nginx-common |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| nginx-common |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| nginx-common |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| nginx-common |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| nginx-common |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| gcc-10-base |
CVE-2023-4039 |
低危 |
10.2.1-6 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.31-13+deb11u11 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libkrb5-3 |
CVE-2018-5709 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libkrb5-3 |
CVE-2024-26458 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5-3 |
CVE-2024-26461 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5-3 |
CVE-2026-11850 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| libcurl4 |
CVE-2021-22922 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Content not matching hash in Metalink is not being discarded
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-05 21:15 修改: 2026-06-17 03:38
|
| libcurl4 |
CVE-2021-22923 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Metalink download sends credentials
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-05 21:15 修改: 2026-06-17 03:38
|
| libcurl4 |
CVE-2023-28320 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: siglongjmp race condition may lead to crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-05-26 21:15 修改: 2026-06-17 05:47
|
| libnginx-mod-stream-geoip |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| libnginx-mod-stream-geoip |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-stream-geoip |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| libnginx-mod-stream-geoip |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| libnginx-mod-stream-geoip |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| nginx-core |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| nginx-core |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| nginx-core |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| nginx-core |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| nginx-core |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| libkrb5support0 |
CVE-2018-5709 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libkrb5support0 |
CVE-2024-26458 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5support0 |
CVE-2024-26461 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5support0 |
CVE-2026-11850 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| libcurl4 |
CVE-2024-2379 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: QUIC certificate check bypass with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24
|
| libldap-2.4-2 |
CVE-2015-3276 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: incorrect multi-keyword mode cipherstring parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
|
| libldap-2.4-2 |
CVE-2017-14159 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: Privilege escalation via PID file manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-09-05 18:29 修改: 2026-06-17 01:05
|
| libldap-2.4-2 |
CVE-2017-17740 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-12-18 06:29 修改: 2026-06-17 01:11
|
| openssl |
CVE-2024-13176 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u3 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01
|
| openssl |
CVE-2025-27587 |
低危 |
1.1.1w-0+deb11u2 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
|
| openssl |
CVE-2025-68160 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| openssl |
CVE-2025-69418 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| openssl |
CVE-2025-69420 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| openssl |
CVE-2026-22795 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| openssl |
CVE-2026-22796 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| openssl |
CVE-2026-34180 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| openssl |
CVE-2026-42766 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| openssl |
CVE-2026-7383 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| openssl |
CVE-2026-9076 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libldap-2.4-2 |
CVE-2020-15719 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: Certificate validation incorrectly matches name against CN-ID
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2020-07-14 14:15 修改: 2026-06-17 02:57
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.8.1-1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| passwd |
CVE-2013-4235 |
低危 |
1:4.8.1-1 |
|
shadow-utils: TOCTOU race conditions by copying and removing directory trees
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-12-03 15:15 修改: 2024-11-21 01:55
|
| passwd |
CVE-2023-29383 |
低危 |
1:4.8.1-1 |
1:4.8.1-1+deb11u1 |
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-04-14 22:15 修改: 2026-06-17 05:49
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.8.1-1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.8.1-1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libldap-2.4-2 |
CVE-2026-22185 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-07 21:16 修改: 2026-06-17 10:19
|
| libcurl4 |
CVE-2025-0725 |
低危 |
7.74.0-1.3+deb11u14 |
|
libcurl: Buffer Overflow in libcurl via zlib Integer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27
|
| libldap-common |
CVE-2015-3276 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: incorrect multi-keyword mode cipherstring parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
|
| libldap-common |
CVE-2017-14159 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: Privilege escalation via PID file manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-09-05 18:29 修改: 2026-06-17 01:05
|
| libldap-common |
CVE-2017-17740 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-12-18 06:29 修改: 2026-06-17 01:11
|
| libldap-common |
CVE-2020-15719 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
openldap: Certificate validation incorrectly matches name against CN-ID
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2020-07-14 14:15 修改: 2026-06-17 02:57
|
| libldap-common |
CVE-2026-22185 |
低危 |
2.4.57+dfsg-3+deb11u1 |
|
OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-07 21:16 修改: 2026-06-17 10:19
|
| libcurl4 |
CVE-2025-10966 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Curl missing SFTP host verification with wolfSSH backend
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29
|
| libcurl4 |
CVE-2025-14017 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35
|
| libpcre2-8-0 |
CVE-2022-41409 |
低危 |
10.36-2+deb11u1 |
|
pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-07-18 14:15 修改: 2026-06-17 05:03
|
| libpcre3 |
CVE-2017-11164 |
低危 |
2:8.39-13 |
|
pcre: OP_KETRMAX feature in the match function in pcre_exec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2017-07-11 03:29 修改: 2026-06-17 01:01
|
| perl |
CVE-2011-4116 |
低危 |
5.32.1-4+deb11u4 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl |
CVE-2023-31486 |
低危 |
5.32.1-4+deb11u4 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
|
| libpcre3 |
CVE-2017-16231 |
低危 |
2:8.39-13 |
|
pcre: self-recursive call in match() in pcre_exec.c leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16231
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-03-21 15:59 修改: 2026-06-17 01:09
|
| libpcre3 |
CVE-2017-7245 |
低危 |
2:8.39-13 |
|
pcre: stack-based buffer overflow write in pcre32_copy_substring
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7245
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2017-03-23 21:59 修改: 2026-06-17 01:23
|
| libpcre3 |
CVE-2017-7246 |
低危 |
2:8.39-13 |
|
pcre: stack-based buffer overflow write in pcre32_copy_substring
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7246
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2017-03-23 21:59 修改: 2026-06-17 01:23
|
| libpcre3 |
CVE-2019-20838 |
低危 |
2:8.39-13 |
|
pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2020-06-15 17:15 修改: 2026-06-17 02:31
|
| libcurl4 |
CVE-2025-14524 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
|
| libcurl4 |
CVE-2025-15079 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Host verification bypass during SSH transfers
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
|
| libcurl4 |
CVE-2025-15224 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: libssh key passphrase bypass without agent set
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libmount1 |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libcurl4 |
CVE-2026-8458 |
低危 |
7.74.0-1.3+deb11u14 |
|
libcurl might in some circumstances reuse the wrong connection when as ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.31-13+deb11u11 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
|
| perl-base |
CVE-2011-4116 |
低危 |
5.32.1-4+deb11u4 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl-base |
CVE-2023-31486 |
低危 |
5.32.1-4+deb11u4 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
|
| libncurses6 |
CVE-2025-6141 |
低危 |
6.2+20201114-2+deb11u2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libelf1 |
CVE-2021-33294 |
低危 |
0.183-1 |
|
elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-07-18 14:15 修改: 2026-06-17 03:54
|
| libelf1 |
CVE-2024-25260 |
低危 |
0.183-1 |
|
elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-02-20 18:15 修改: 2026-06-17 07:15
|
| libncursesw6 |
CVE-2025-6141 |
低危 |
6.2+20201114-2+deb11u2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libperl5.32 |
CVE-2011-4116 |
低危 |
5.32.1-4+deb11u4 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| libperl5.32 |
CVE-2023-31486 |
低危 |
5.32.1-4+deb11u4 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
|
| libelf1 |
CVE-2025-1352 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| libelf1 |
CVE-2025-1365 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-17 00:15 修改: 2026-06-17 08:38
|
| libelf1 |
CVE-2025-1371 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| libelf1 |
CVE-2025-1372 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| libelf1 |
CVE-2025-1376 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| perl-modules-5.32 |
CVE-2011-4116 |
低危 |
5.32.1-4+deb11u4 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl-modules-5.32 |
CVE-2023-31486 |
低危 |
5.32.1-4+deb11u4 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
|
| libelf1 |
CVE-2025-1377 |
低危 |
0.183-1 |
|
elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.31-13+deb11u11 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.31-13+deb11u11 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.31-13+deb11u11 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.31-13+deb11u11 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.31-13+deb11u11 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
|
| libc-bin |
CVE-2025-15281 |
低危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
|
| libpng16-16 |
CVE-2019-6129 |
低危 |
1.6.37-3 |
|
libpng: memory leak of png_info struct in pngcp.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6129
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2019-01-11 05:29 修改: 2026-06-17 02:38
|
| libpng16-16 |
CVE-2021-4214 |
低危 |
1.6.37-3 |
|
libpng: hardcoded value leads to heap-overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-08-24 16:15 修改: 2026-06-17 04:19
|
| libpng16-16 |
CVE-2025-28162 |
低危 |
1.6.37-3 |
|
libpng: libpng: Denial of Service via buffer overflow in pngimage utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28162
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
|
| libpng16-16 |
CVE-2025-28164 |
低危 |
1.6.37-3 |
|
libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
|
| libpng16-16 |
CVE-2026-3713 |
低危 |
1.6.37-3 |
|
libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-08 06:16 修改: 2026-06-17 10:44
|
| libprocps8 |
CVE-2023-4016 |
低危 |
2:3.3.17-5 |
|
procps: ps buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36
|
| libc-bin |
CVE-2026-0861 |
低危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
|
| gcc-9-base |
CVE-2023-4039 |
低危 |
9.3.0-22 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17
|
| busybox |
CVE-2025-46394 |
低危 |
1:1.30.1-6+deb11u1 |
|
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26
|
| busybox |
CVE-2025-60876 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: BusyBox wget: HTTP request-target allows header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-60876
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-10 20:15 修改: 2026-06-17 09:50
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libsmartcols1 |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libnginx-mod-http-geoip |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| libnginx-mod-http-geoip |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-http-geoip |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| libnginx-mod-http-geoip |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| libnginx-mod-http-geoip |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| apt |
CVE-2011-3374 |
低危 |
2.2.4 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| gpgv |
CVE-2022-3219 |
低危 |
2.2.27-2+deb11u2 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59
|
| gpgv |
CVE-2026-57062 |
低危 |
2.2.27-2+deb11u2 |
|
GnuPG: Incorrect cryptographic message parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16
|
| coreutils |
CVE-2016-2781 |
低危 |
8.32-4+b1 |
|
coreutils: Non-privileged session can escape to the parent session in chroot
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2017-02-07 15:59 修改: 2026-06-17 00:44
|
| coreutils |
CVE-2017-18018 |
低危 |
8.32-4+b1 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-01-04 04:29 修改: 2026-06-17 01:12
|
| coreutils |
CVE-2025-5278 |
低危 |
8.32-4+b1 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-05-27 21:15 修改: 2026-07-01 11:16
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.1-2+deb11u1 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libapparmor1 |
CVE-2016-1585 |
低危 |
2.13.6-10 |
|
In all versions of AppArmor mount rules are accidentally widened when ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1585
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2019-04-22 16:29 修改: 2026-06-17 00:42
|
| libssl1.1 |
CVE-2024-13176 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u3 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01
|
| libssl1.1 |
CVE-2025-27587 |
低危 |
1.1.1w-0+deb11u2 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
|
| libssl1.1 |
CVE-2025-68160 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| libssl1.1 |
CVE-2025-69418 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2025-69420 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2026-22795 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl1.1 |
CVE-2026-22796 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u5 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl1.1 |
CVE-2026-34180 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl1.1 |
CVE-2026-42766 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl1.1 |
CVE-2026-7383 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| libssl1.1 |
CVE-2026-9076 |
低危 |
1.1.1w-0+deb11u2 |
1.1.1w-0+deb11u8 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libstdc++6 |
CVE-2023-4039 |
低危 |
10.2.1-6 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17
|
| libc6 |
CVE-2010-4756 |
低危 |
2.31-13+deb11u11 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc6 |
CVE-2018-20796 |
低危 |
2.31-13+deb11u11 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.31-13+deb11u11 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.31-13+deb11u11 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libexpat1 |
CVE-2013-0340 |
低危 |
2.2.10-2+deb11u6 |
|
expat: internal entity expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0340
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2014-01-21 18:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
247.3-7+deb11u6 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2020-13529 |
低危 |
247.3-7+deb11u6 |
|
systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2021-05-10 16:15 修改: 2026-06-17 02:53
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
247.3-7+deb11u6 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libtasn1-6 |
CVE-2025-13151 |
低危 |
4.16.0-2+deb11u2 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33
|
| libexpat1 |
CVE-2023-52426 |
低危 |
2.2.10-2+deb11u6 |
|
expat: recursive XML entity expansion vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-02-04 20:15 修改: 2026-06-17 06:42
|
| libnginx-mod-http-image-filter |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| libnginx-mod-http-image-filter |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-http-image-filter |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| libnginx-mod-http-image-filter |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| libnginx-mod-http-image-filter |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| libtiff5 |
CVE-2017-16232 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: Memory leaks in tif_open.c, tif_lzw.c, and tif_aux.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16232
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2019-03-21 15:59 修改: 2026-06-17 01:09
|
| libtiff5 |
CVE-2018-10126 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10126
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2018-04-21 21:29 修改: 2026-06-17 01:33
|
| libtiff5 |
CVE-2022-1056 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1056
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-03-28 19:15 修改: 2026-06-17 04:21
|
| libtiff5 |
CVE-2022-1210 |
低危 |
4.2.0-1+deb11u6 |
|
tiff: Malicious file leads to a denial of service in TIFF File Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1210
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-04-03 09:15 修改: 2026-06-17 04:22
|
| libtiff5 |
CVE-2023-1916 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1916
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-04-10 22:15 修改: 2026-06-17 05:29
|
| libtiff5 |
CVE-2023-30775 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: Heap buffer overflow in extractContigSamples32bits, tiffcrop.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30775
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-05-19 15:15 修改: 2026-06-17 05:55
|
| libtiff5 |
CVE-2023-3164 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: heap-buffer-overflow in extractImageSection()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-11-02 12:15 修改: 2026-06-17 06:13
|
| libtiff5 |
CVE-2023-6228 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-12-18 14:15 修改: 2026-06-17 06:50
|
| libtiff5 |
CVE-2024-13978 |
低危 |
4.2.0-1+deb11u6 |
4.2.0-1+deb11u7 |
libtiff: LibTIFF Null Pointer Dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13978
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-01 22:15 修改: 2026-06-17 07:03
|
| libtiff5 |
CVE-2025-61143 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: libtiff: Denial of Service via NULL pointer dereference in tif_open.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61143
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-23 19:22 修改: 2026-06-17 09:50
|
| libtiff5 |
CVE-2025-61144 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: libtiff: Denial of Service via buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61144
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-23 19:22 修改: 2026-06-17 09:50
|
| libtiff5 |
CVE-2025-61145 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: libtiff: Denial of service via double free in tiffcrop.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61145
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-02-23 19:22 修改: 2026-06-17 09:50
|
| libtiff5 |
CVE-2025-8176 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: LibTIFF Use-After-Free Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8176
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-26 04:16 修改: 2026-06-17 10:06
|
| libtiff5 |
CVE-2025-8177 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: LibTIFF Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8177
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-07-26 04:16 修改: 2026-06-17 10:06
|
| libtiff5 |
CVE-2025-8534 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: Libtiff Null Pointer Dereference Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8534
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-05 00:15 修改: 2026-06-17 10:07
|
| libtiff5 |
CVE-2025-8851 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: LibTIFF Stack-based buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8851
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-11 14:15 修改: 2026-06-17 10:07
|
| libtiff5 |
CVE-2025-8961 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: LibTIFF memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8961
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:08
|
| libtiff5 |
CVE-2025-9165 |
低危 |
4.2.0-1+deb11u6 |
|
libtiff: LibTIFF memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9165
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-19 20:15 修改: 2026-06-17 10:08
|
| libexpat1 |
CVE-2024-28757 |
低危 |
2.2.10-2+deb11u6 |
|
expat: XML Entity Expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-03-10 05:15 修改: 2026-06-17 07:21
|
| libexpat1 |
CVE-2026-24515 |
低危 |
2.2.10-2+deb11u6 |
|
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23
|
| libtinfo6 |
CVE-2025-6141 |
低危 |
6.2+20201114-2+deb11u2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libexpat1 |
CVE-2026-41080 |
低危 |
2.2.10-2+deb11u6 |
|
libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-04-16 17:16 修改: 2026-06-17 10:46
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.31-13+deb11u11 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libfreetype6 |
CVE-2022-31782 |
低危 |
2.10.4+dfsg-1+deb11u1 |
|
ftbench.c in FreeType Demo Programs through 2.12.1 has a heap-based bu ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31782
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-06-02 14:15 修改: 2026-06-17 04:46
|
| libgcc-s1 |
CVE-2023-4039 |
低危 |
10.2.1-6 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.31-13+deb11u11 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libudev1 |
CVE-2013-4392 |
低危 |
247.3-7+deb11u6 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2020-13529 |
低危 |
247.3-7+deb11u6 |
|
systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2021-05-10 16:15 修改: 2026-06-17 02:53
|
| libudev1 |
CVE-2023-31437 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2023-31438 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2023-31439 |
低危 |
247.3-7+deb11u6 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2026-40228 |
低危 |
247.3-7+deb11u6 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.8.7-6 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-02-07 23:29 修改: 2026-06-17 02:02
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.8.7-6 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| libc6 |
CVE-2019-9192 |
低危 |
2.31-13+deb11u11 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
|
| libc6 |
CVE-2025-15281 |
低危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libuuid1 |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libc6 |
CVE-2026-0861 |
低危 |
2.31-13+deb11u11 |
2.31-13+deb11u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
|
| libapt-pkg6.0 |
CVE-2011-3374 |
低危 |
2.2.4 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libnginx-mod-http-xslt-filter |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| libnginx-mod-http-xslt-filter |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-http-xslt-filter |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| libnginx-mod-http-xslt-filter |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| libnginx-mod-http-xslt-filter |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| bsdutils |
CVE-2025-14104 |
低危 |
1:2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libxml2 |
CVE-2024-34459 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u8 |
libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-05-14 15:39 修改: 2026-06-17 07:33
|
| libxml2 |
CVE-2025-6170 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u8 |
libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6170
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-06-16 16:15 修改: 2026-07-08 15:16
|
| libxml2 |
CVE-2025-8732 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u10 |
libxml2: libxml2: Uncontrolled Recursion Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-08 17:15 修改: 2026-07-01 15:25
|
| libxml2 |
CVE-2026-0989 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u10 |
libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-15 15:15 修改: 2026-06-30 20:20
|
| libxml2 |
CVE-2026-0992 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
2.9.10+dfsg-6.7+deb11u10 |
libxml2: libxml2: Denial of Service via crafted XML catalogs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-01-15 15:15 修改: 2026-06-30 20:17
|
| libxml2 |
CVE-2026-11979 |
低危 |
2.9.10+dfsg-6.7+deb11u6 |
|
libxml2: libxml2: Arbitrary code execution in xmlcatalog utility via buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11979
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-06-29 14:16 修改: 2026-06-30 20:22
|
| busybox |
CVE-2018-1000500 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: wget: Missing SSL certificate validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000500
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2018-06-26 16:29 修改: 2026-06-17 01:32
|
| busybox |
CVE-2021-42373 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: NULL pointer dereference in man applet leads to denial of service when a section name is supplied but no page argument is given
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42373
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-11-15 21:15 修改: 2026-06-17 04:09
|
| busybox |
CVE-2021-42375 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: incorrect handling of a special element in ash applet leads to denial of service when processing a crafted shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42375
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-11-15 21:15 修改: 2026-06-17 04:09
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libxslt1.1 |
CVE-2015-9019 |
低危 |
1.1.34-4+deb11u2 |
|
libxslt: math.random() in xslt uses unseeded randomness
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-9019
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2017-04-05 21:59 修改: 2026-05-13 00:24
|
| libxslt1.1 |
CVE-2025-11731 |
低危 |
1.1.34-4+deb11u2 |
|
libxslt: Type Confusion in exsltFuncResultCompfunction of libxslt
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11731
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-10-14 06:15 修改: 2026-06-30 07:16
|
| libxtables12 |
CVE-2012-2663 |
低危 |
1.8.7-1 |
|
iptables: --syn flag bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
|
| libblkid1 |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| busybox |
CVE-2021-42376 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: NULL pointer dereference in hush applet leads to denial of service when processing a crafted shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42376
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-11-15 21:15 修改: 2026-06-17 04:09
|
| login |
CVE-2007-5686 |
低危 |
1:4.8.1-1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| login |
CVE-2013-4235 |
低危 |
1:4.8.1-1 |
|
shadow-utils: TOCTOU race conditions by copying and removing directory trees
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2019-12-03 15:15 修改: 2024-11-21 01:55
|
| login |
CVE-2023-29383 |
低危 |
1:4.8.1-1 |
1:4.8.1-1+deb11u1 |
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2023-04-14 22:15 修改: 2026-06-17 05:49
|
| login |
CVE-2024-56433 |
低危 |
1:4.8.1-1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| login |
TEMP-0628843-DBAD28 |
低危 |
1:4.8.1-1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| busybox |
CVE-2021-42377 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: an attacker-controlled pointer free in hush applet leads to denial of service and possible code execution when processing a crafted shell command
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42377
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-11-15 21:15 修改: 2026-06-17 04:09
|
| busybox |
CVE-2022-30065 |
低危 |
1:1.30.1-6+deb11u1 |
|
busybox: A use-after-free in Busybox's awk applet leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30065
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2022-05-18 15:15 修改: 2026-07-07 19:16
|
| curl |
CVE-2021-22922 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Content not matching hash in Metalink is not being discarded
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-05 21:15 修改: 2026-06-17 03:38
|
| libbpf0 |
CVE-2025-29481 |
低危 |
1:0.3-2 |
|
libbpf: Heap Buffer Overflow in libbpf
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05
|
| mount |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| mount |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| curl |
CVE-2021-22923 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Metalink download sends credentials
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2021-08-05 21:15 修改: 2026-06-17 03:38
|
| curl |
CVE-2023-28320 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: siglongjmp race condition may lead to crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-05-26 21:15 修改: 2026-06-17 05:47
|
| ncurses-base |
CVE-2025-6141 |
低危 |
6.2+20201114-2+deb11u2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libgnutls30 |
CVE-2011-3389 |
低危 |
3.7.1-5+deb11u7 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
|
| libnginx-mod-mail |
CVE-2009-4487 |
低危 |
1.18.0-6.1+deb11u4 |
|
nginx: Absent sanitation of escape sequences in web server log
漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
|
| ncurses-bin |
CVE-2025-6141 |
低危 |
6.2+20201114-2+deb11u2 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libnginx-mod-mail |
CVE-2013-0337 |
低危 |
1.18.0-6.1+deb11u4 |
|
The default configuration of nginx, possibly 1.3.13 and earlier, uses ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
|
| libnginx-mod-mail |
CVE-2023-44487 |
低危 |
1.18.0-6.1+deb11u4 |
|
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
|
| procps |
CVE-2023-4016 |
低危 |
2:3.3.17-5 |
|
procps: ps buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36
|
| libnginx-mod-mail |
CVE-2025-53859 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
nginx: NGINX ngx_mail_smtp_module vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-08-13 15:15 修改: 2026-06-17 09:39
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
2.96-7+deb11u1 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-mail |
CVE-2026-28753 |
低危 |
1.18.0-6.1+deb11u4 |
1.18.0-6.1+deb11u6 |
NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-03-24 15:16 修改: 2026-06-17 10:28
|
| tar |
CVE-2005-2541 |
低危 |
1.34+dfsg-1+deb11u1 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.34+dfsg-1+deb11u1 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgnutls30 |
CVE-2025-9820 |
低危 |
3.7.1-5+deb11u7 |
3.7.1-5+deb11u9 |
gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-01-26 20:16 修改: 2026-06-30 09:16
|
| curl |
CVE-2024-2379 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: QUIC certificate check bypass with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24
|
| curl |
CVE-2025-0725 |
低危 |
7.74.0-1.3+deb11u14 |
|
libcurl: Buffer Overflow in libcurl via zlib Integer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27
|
| curl |
CVE-2025-10966 |
低危 |
7.74.0-1.3+deb11u14 |
|
curl: Curl missing SFTP host verification with wolfSSH backend
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29
|
| util-linux |
CVE-2022-0563 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| util-linux |
CVE-2025-14104 |
低危 |
2.36.1-8+deb11u2 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libgssapi-krb5-2 |
CVE-2018-5709 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libgssapi-krb5-2 |
CVE-2024-26458 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libgssapi-krb5-2 |
CVE-2024-26461 |
低危 |
1.18.3-6+deb11u6 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| mount |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libmount1 |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-http-image-filter |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| nginx-core |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libuuid1 |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-http-geoip |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| nginx-common |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libcurl4 |
DLA-4213-1 |
未知 |
7.74.0-1.3+deb11u14 |
7.74.0-1.3+deb11u15 |
curl - regression update
漏洞详情:
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| nginx |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| perl-base |
CVE-2026-7017 |
未知 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.095 for Perl forward credential headers t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7017
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 2026-07-07 19:16 修改: 2026-07-08 15:56
|
| libcurl4 |
DLA-4432-1 |
未知 |
7.74.0-1.3+deb11u14 |
7.74.0-1.3+deb11u16 |
curl - security update
漏洞详情:
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-stream-geoip |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libsmartcols1 |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2026-53613 |
未知 |
1:2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-mail |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libblkid1 |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| ca-certificates |
DLA-4485-1 |
未知 |
20210119 |
20230311+deb12u1~deb11u1 |
ca-certificates - CA certificates update
漏洞详情:
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| tzdata |
DLA-4085-1 |
未知 |
2024b-0+deb11u1 |
2025a-0+deb11u1 |
tzdata - new timezone database
漏洞详情:
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| tzdata |
DLA-4105-1 |
未知 |
2024b-0+deb11u1 |
2025b-0+deb11u1 |
tzdata - new timezone database
漏洞详情:
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| tzdata |
DLA-4403-1 |
未知 |
2024b-0+deb11u1 |
2025b-0+deb11u2 |
tzdata - new timezone database
漏洞详情:
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| tzdata |
DLA-4569-1 |
未知 |
2024b-0+deb11u1 |
2026b-0+deb11u1 |
tzdata - new timezone database
漏洞详情:
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libfreetype6 |
CVE-2026-50811 |
未知 |
2.10.4+dfsg-1+deb11u1 |
|
An out-of-bounds read vulnerability exists in FreeType 2.14.3 and vers ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50811
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-07 23:16 修改: 2026-07-09 17:02
|
| curl |
DLA-4213-1 |
未知 |
7.74.0-1.3+deb11u14 |
7.74.0-1.3+deb11u15 |
curl - regression update
漏洞详情:
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnginx-mod-http-xslt-filter |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| perl |
CVE-2026-7017 |
未知 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.095 for Perl forward credential headers t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7017
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-07 19:16 修改: 2026-07-08 15:56
|
| libperl5.32 |
CVE-2026-7017 |
未知 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.095 for Perl forward credential headers t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7017
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-07 19:16 修改: 2026-07-08 15:56
|
| curl |
DLA-4432-1 |
未知 |
7.74.0-1.3+deb11u14 |
7.74.0-1.3+deb11u16 |
curl - security update
漏洞详情:
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux |
CVE-2026-53613 |
未知 |
2.36.1-8+deb11u2 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:d215e887b4c2504dbfdf905627443999eb9b1bd29109ac636f9a534ff8bc9865
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| perl-modules-5.32 |
CVE-2026-7017 |
未知 |
5.32.1-4+deb11u4 |
|
HTTP::Tiny versions before 0.095 for Perl forward credential headers t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7017
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 2026-07-07 19:16 修改: 2026-07-08 15:56
|
| libnginx-mod-stream |
TEMP-1138794-BADE22 |
未知 |
1.18.0-6.1+deb11u4 |
|
[HTTP/2 Bomb denial of service]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libtiff5 |
CVE-2026-36849 |
未知 |
4.2.0-1+deb11u6 |
|
[Denial of Service via large SamplesPerPixel tag]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-36849
镜像层: sha256:05a699c2f0756ae85501f258d796838cfc0f41d27801813213777b587fa242b3
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|