docker.io/envoyproxy/envoy:distroless-v1.37.2 linux/amd64

docker.io/envoyproxy/envoy:distroless-v1.37.2 - Trivy安全扫描结果 扫描时间: 2026-05-14 16:53
全部漏洞信息
低危漏洞:7 中危漏洞:9 高危漏洞:1 严重漏洞:0

系统OS: debian 12.13 扫描引擎: Trivy 扫描时间: 2026-05-14 16:53

docker.io/envoyproxy/envoy:distroless-v1.37.2 (debian 12.13) (debian)
低危漏洞:7 中危漏洞:9 高危漏洞:1 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libc6 CVE-2026-0861 高危 2.36-9+deb12u13 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
libc6 CVE-2025-15281 中危 2.36-9+deb12u13 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
libc6 CVE-2026-0915 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
libc6 CVE-2026-4046 中危 2.36-9+deb12u13 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
libc6 CVE-2026-4437 中危 2.36-9+deb12u13 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
libc6 CVE-2026-4438 中危 2.36-9+deb12u13 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
libc6 CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc6 CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6 CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6 CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc6 CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc6 CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libc6 CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:bd29502adf199ad9c03afba9bc79df572a26ec60a2a6ffdda4883a5b7a1632fe

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51