| libcrypto3 |
CVE-2026-45447 |
高危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20
|
| libssl3 |
CVE-2026-45447 |
高危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-30 03:20
|
| p11-kit |
CVE-2026-2100 |
高危 |
0.25.5-r2 |
0.26.2-r0 |
p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2100
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-03-26 21:17 修改: 2026-06-22 20:16
|
| libcrypto3 |
CVE-2026-42764 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libcrypto3 |
CVE-2026-45445 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libexpat |
CVE-2026-50219 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57
|
| libexpat |
CVE-2026-56132 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| libexpat |
CVE-2026-56403 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| libexpat |
CVE-2026-56404 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat before 2.8.2 has an integer overflow in addBinding.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| libexpat |
CVE-2026-56405 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14
|
| libexpat |
CVE-2026-56406 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29
|
| libexpat |
CVE-2026-56410 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18
|
| libexpat |
CVE-2026-56411 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16
|
| libexpat |
CVE-2026-56412 |
中危 |
2.8.1-r0 |
2.8.2-r0 |
libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31
|
| libcrypto3 |
CVE-2026-34182 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-34182 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-34183 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-42764 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-45445 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libcrypto3 |
CVE-2026-34183 |
中危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libcrypto3 |
CVE-2026-42769 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libcrypto3 |
CVE-2026-42770 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libcrypto3 |
CVE-2026-45446 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libcrypto3 |
CVE-2026-7383 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| libcrypto3 |
CVE-2026-9076 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libcrypto3 |
CVE-2026-34180 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libcrypto3 |
CVE-2026-34181 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libcrypto3 |
CVE-2026-42766 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libcrypto3 |
CVE-2026-42767 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-34180 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-34181 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-42766 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42767 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42768 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42769 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42770 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-45446 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libssl3 |
CVE-2026-7383 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| libssl3 |
CVE-2026-9076 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libcrypto3 |
CVE-2026-42768 |
低危 |
3.5.6-r0 |
3.5.7-r0 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:29df493baa13de438d6d2ece3a8333032e0b7b9b9d8cce4ee82194da255f61e1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libexpat |
CVE-2026-56131 |
未知 |
2.8.1-r0 |
2.8.2-r0 |
libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| libexpat |
CVE-2026-56407 |
未知 |
2.8.1-r0 |
2.8.2-r0 |
libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28
|
| libexpat |
CVE-2026-56408 |
未知 |
2.8.1-r0 |
2.8.2-r0 |
libexpat before 2.8.2 has an integer overflow in copyString.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27
|
| libexpat |
CVE-2026-56409 |
未知 |
2.8.1-r0 |
2.8.2-r0 |
xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409
镜像层: sha256:e0072a20c4e601c64d0bc630d3978b6978704ecab6de8e280d654f3c07fa0c72
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21
|