| libcrypto3 |
CVE-2026-31789 |
严重 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libxml2 |
CVE-2024-56171 |
严重 |
2.12.7-r0 |
2.12.7-r1 |
libxml2: Use-After-Free in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56171
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-18 22:15 修改: 2025-11-03 21:17
|
| libcrypto3 |
CVE-2025-69421 |
高危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28387 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28388 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28389 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28390 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libexpat |
CVE-2025-59375 |
高危 |
2.6.4-r0 |
2.7.2-r0 |
firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-09-15 03:15 修改: 2026-05-12 13:17
|
| libexpat |
CVE-2026-25210 |
高危 |
2.6.4-r0 |
2.7.4-r0 |
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
|
| libpng |
CVE-2025-64720 |
高危 |
1.6.44-r0 |
1.6.53-r0 |
libpng: LIBPNG buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:35
|
| libpng |
CVE-2025-65018 |
高危 |
1.6.44-r0 |
1.6.53-r0 |
libpng: LIBPNG heap buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
|
| libpng |
CVE-2025-66293 |
高危 |
1.6.44-r0 |
1.6.53-r0 |
libpng: LIBPNG out-of-bounds read in png_image_read_composite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-12-03 21:15 修改: 2025-12-16 19:12
|
| libpng |
CVE-2026-22695 |
高危 |
1.6.44-r0 |
1.6.54-r0 |
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
|
| libpng |
CVE-2026-22801 |
高危 |
1.6.44-r0 |
1.6.54-r0 |
libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
|
| libpng |
CVE-2026-25646 |
高危 |
1.6.44-r0 |
1.6.55-r0 |
libpng: LIBPNG has a heap buffer overflow in png_set_quantize
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-02-10 18:16 修改: 2026-02-13 20:43
|
| libcrypto3 |
CVE-2024-12797 |
高危 |
3.3.2-r1 |
3.3.3-r0 |
openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-02-11 16:15 修改: 2026-04-15 00:35
|
| libssl3 |
CVE-2024-12797 |
高危 |
3.3.2-r1 |
3.3.3-r0 |
openssl: RFC7250 handshakes with unauthenticated servers don't abort as expected
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12797
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-02-11 16:15 修改: 2026-04-15 00:35
|
| libssl3 |
CVE-2025-15467 |
高危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| libssl3 |
CVE-2025-69421 |
高危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2025-15467 |
高危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| libxml2 |
CVE-2025-24928 |
高危 |
2.12.7-r0 |
2.12.7-r1 |
libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24928
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
|
| libxml2 |
CVE-2025-27113 |
高危 |
2.12.7-r0 |
2.12.7-r2 |
libxml2: NULL Pointer Dereference in libxml2 xmlPatMatch
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27113
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
|
| libxml2 |
CVE-2025-32414 |
高危 |
2.12.7-r0 |
2.12.10-r0 |
libxml2: Out-of-Bounds Read in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-04-08 03:15 修改: 2025-11-03 20:18
|
| libxml2 |
CVE-2025-32415 |
高危 |
2.12.7-r0 |
2.12.10-r0 |
libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-04-17 17:15 修改: 2025-11-03 20:18
|
| libxslt |
CVE-2024-55549 |
高危 |
1.1.39-r1 |
1.1.39-r2 |
libxslt: Use-After-Free in libxslt (xsltGetInheritedNsList)
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-55549
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-03-14 02:15 修改: 2025-11-03 21:17
|
| libxslt |
CVE-2025-24855 |
高危 |
1.1.39-r1 |
1.1.39-r2 |
libxslt: Use-After-Free in libxslt numbers.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24855
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-03-14 02:15 修改: 2025-11-03 22:18
|
| musl |
CVE-2025-26519 |
高危 |
1.2.5-r0 |
1.2.5-r1 |
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26519
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-02-14 04:15 修改: 2025-12-10 20:03
|
| musl |
CVE-2026-40200 |
高危 |
1.2.5-r0 |
1.2.5-r3 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| musl-utils |
CVE-2025-26519 |
高危 |
1.2.5-r0 |
1.2.5-r1 |
musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26519
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-02-14 04:15 修改: 2025-12-10 20:03
|
| musl-utils |
CVE-2026-40200 |
高危 |
1.2.5-r0 |
1.2.5-r3 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| xz-libs |
CVE-2025-31115 |
高危 |
5.6.2-r0 |
5.6.2-r1 |
xz: XZ has a heap-use-after-free bug in threaded .xz decoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-31115
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-04-03 17:15 修改: 2026-05-12 13:16
|
| zlib |
CVE-2026-22184 |
高危 |
1.3.1-r1 |
1.3.2-r0 |
zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22184
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-07 21:16 修改: 2026-03-18 16:26
|
| libpng |
CVE-2026-33636 |
中危 |
1.6.44-r0 |
1.6.56-r0 |
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-03-26 17:16 修改: 2026-04-02 18:42
|
| libpng |
CVE-2026-34757 |
中危 |
1.6.44-r0 |
1.6.57-r0 |
libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-04-09 15:16 修改: 2026-05-13 23:07
|
| libcrypto3 |
CVE-2025-9231 |
中危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Timing side-channel in SM2 algorithm on 64 bit ARM
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libcrypto3 |
CVE-2026-31790 |
中危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcurl |
CVE-2025-4947 |
中危 |
8.11.1-r0 |
8.14.0-r0 |
libcurl: curl: QUIC certificate check skip with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4947
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-05-28 07:15 修改: 2025-06-26 15:08
|
| libcurl |
CVE-2025-5025 |
中危 |
8.11.1-r0 |
8.14.0-r0 |
curl: libcurl: QUIC Certificate Pinning Bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5025
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-05-28 07:15 修改: 2025-07-30 19:41
|
| libcurl |
CVE-2025-5399 |
中危 |
8.11.1-r0 |
8.14.1-r0 |
curl: libcurl: WebSocket endless loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5399
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-06-07 08:15 修改: 2025-07-30 19:41
|
| libcurl |
CVE-2025-9086 |
中危 |
8.11.1-r0 |
8.14.1-r2 |
curl: libcurl: Curl out of bounds read for cookie path
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-09-12 06:15 修改: 2026-06-02 14:16
|
| curl |
CVE-2025-4947 |
中危 |
8.11.1-r0 |
8.14.0-r0 |
libcurl: curl: QUIC certificate check skip with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4947
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-05-28 07:15 修改: 2025-06-26 15:08
|
| curl |
CVE-2025-5025 |
中危 |
8.11.1-r0 |
8.14.0-r0 |
curl: libcurl: QUIC Certificate Pinning Bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5025
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-05-28 07:15 修改: 2025-07-30 19:41
|
| libssl3 |
CVE-2025-69419 |
中危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-9230 |
中危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2025-9231 |
中危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Timing side-channel in SM2 algorithm on 64 bit ARM
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.3.2-r1 |
3.3.7-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libexpat |
CVE-2024-8176 |
中危 |
2.6.4-r0 |
2.7.0-r0 |
libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-03-14 09:15 修改: 2026-04-15 00:35
|
| libexpat |
CVE-2026-32776 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat |
CVE-2026-32777 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat |
CVE-2026-32778 |
中危 |
2.6.4-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| curl |
CVE-2025-5399 |
中危 |
8.11.1-r0 |
8.14.1-r0 |
curl: libcurl: WebSocket endless loop
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5399
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-06-07 08:15 修改: 2025-07-30 19:41
|
| libxpm |
CVE-2026-4367 |
中危 |
3.5.17-r0 |
3.5.19-r0 |
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| curl |
CVE-2025-9086 |
中危 |
8.11.1-r0 |
8.14.1-r2 |
curl: libcurl: Curl out of bounds read for cookie path
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-09-12 06:15 修改: 2026-06-02 14:16
|
| busybox |
CVE-2024-58251 |
中危 |
1.36.1-r29 |
1.36.1-r31 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| busybox-binsh |
CVE-2024-58251 |
中危 |
1.36.1-r29 |
1.36.1-r31 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| libcrypto3 |
CVE-2025-69419 |
中危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| musl |
CVE-2026-6042 |
中危 |
1.2.5-r0 |
1.2.5-r2 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| libcrypto3 |
CVE-2025-9230 |
中危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libpng |
CVE-2025-64505 |
中危 |
1.6.44-r0 |
1.6.53-r0 |
libpng: LIBPNG heap buffer overflow via malformed palette index
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:28
|
| musl-utils |
CVE-2026-6042 |
中危 |
1.2.5-r0 |
1.2.5-r2 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| ssl_client |
CVE-2024-58251 |
中危 |
1.36.1-r29 |
1.36.1-r31 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| libpng |
CVE-2025-64506 |
中危 |
1.6.44-r0 |
1.6.53-r0 |
libpng: LIBPNG heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.6.2-r0 |
5.8.3-r0 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libpng |
CVE-2026-33416 |
中危 |
1.6.44-r0 |
1.6.56-r0 |
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-03-26 17:16 修改: 2026-04-02 20:28
|
| zlib |
CVE-2026-27171 |
中危 |
1.3.1-r1 |
1.3.2-r0 |
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libcrypto3 |
CVE-2025-9232 |
低危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2024-13176 |
低危 |
3.3.2-r1 |
3.3.2-r2 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| libssl3 |
CVE-2025-15468 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| libssl3 |
CVE-2025-66199 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| libssl3 |
CVE-2025-68160 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69418 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69420 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-9232 |
低危 |
3.3.2-r1 |
3.3.5-r0 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2026-22795 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-22796 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-22795 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-22796 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| busybox |
CVE-2025-46394 |
低危 |
1.36.1-r29 |
1.36.1-r31 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| busybox-binsh |
CVE-2025-46394 |
低危 |
1.36.1-r29 |
1.36.1-r31 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| curl |
CVE-2025-0167 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
When asked to use a `.netrc` file for credentials **and** to follow HT ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
|
| curl |
CVE-2025-0665 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
libcurl: Double Close of Eventfd in libcurl
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0665
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2026-03-17 18:16
|
| libcurl |
CVE-2025-0167 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
When asked to use a `.netrc` file for credentials **and** to follow HT ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
|
| libcurl |
CVE-2025-0665 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
libcurl: Double Close of Eventfd in libcurl
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0665
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2026-03-17 18:16
|
| libcurl |
CVE-2025-0725 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
libcurl: Buffer Overflow in libcurl via zlib Integer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2025-06-27 19:24
|
| libcurl |
CVE-2025-10148 |
低危 |
8.11.1-r0 |
8.14.1-r2 |
curl: predictable WebSocket mask
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-09-12 06:15 修改: 2026-01-20 14:55
|
| curl |
CVE-2025-0725 |
低危 |
8.11.1-r0 |
8.12.0-r0 |
libcurl: Buffer Overflow in libcurl via zlib Integer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-02-05 10:15 修改: 2025-06-27 19:24
|
| curl |
CVE-2025-10148 |
低危 |
8.11.1-r0 |
8.14.1-r2 |
curl: predictable WebSocket mask
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2025-09-12 06:15 修改: 2026-01-20 14:55
|
| libcrypto3 |
CVE-2024-13176 |
低危 |
3.3.2-r1 |
3.3.2-r2 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
|
| libcrypto3 |
CVE-2025-15468 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| libcrypto3 |
CVE-2025-66199 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| ssl_client |
CVE-2025-46394 |
低危 |
1.36.1-r29 |
1.36.1-r31 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| libcrypto3 |
CVE-2025-68160 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libexpat |
CVE-2026-24515 |
低危 |
2.6.4-r0 |
2.7.4-r0 |
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:5a760029e979b26ccc3120770832af64f1a0f6c9f3735bafc98e512607485b63
发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
|
| libcrypto3 |
CVE-2025-69418 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2025-69420 |
低危 |
3.3.2-r1 |
3.3.6-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:ce5a8cde9eeef09160653b9c3d14f0c1c0e2900033476a5f2a9fc950161c0eb2
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|