| zlib1g |
CVE-2023-45853 |
严重 |
1:1.2.13.dfsg-1 |
|
zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-10-14 02:15 修改: 2024-08-01 13:44
|
| libblkid1 |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| libc-bin |
CVE-2023-6246 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: heap-based buffer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6246
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-02-16 13:15
|
| libc-bin |
CVE-2023-6779 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: off-by-one heap-based buffer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6779
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-02-27 17:26
|
| libc-bin |
CVE-2024-2961 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u6 |
glibc: Out of bounds write in iconv may lead to remote code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
|
| libc-bin |
CVE-2024-33599 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: stack-based buffer overflow in netgroup cache
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libc6 |
CVE-2023-6246 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: heap-based buffer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6246
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-02-16 13:15
|
| libc6 |
CVE-2023-6779 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: off-by-one heap-based buffer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6779
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-02-27 17:26
|
| libc6 |
CVE-2024-2961 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u6 |
glibc: Out of bounds write in iconv may lead to remote code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
|
| libc6 |
CVE-2024-33599 |
高危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: stack-based buffer overflow in netgroup cache
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libexpat1 |
CVE-2023-52425 |
高危 |
2.5.0-1+deb12u1 |
|
expat: parsing large tokens can trigger a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
|
| libgnutls30 |
CVE-2024-0553 |
高危 |
3.7.9-2 |
3.7.9-2+deb12u2 |
gnutls: incomplete fix for CVE-2023-5981
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
|
| libgnutls30 |
CVE-2024-0567 |
高危 |
3.7.9-2 |
3.7.9-2+deb12u2 |
gnutls: rejects certificate chain with distributed trust
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0567
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-16 14:15 修改: 2024-09-16 13:15
|
| libgssapi-krb5-2 |
CVE-2024-26462 |
高危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
|
| libk5crypto3 |
CVE-2024-26462 |
高危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
|
| libkrb5-3 |
CVE-2024-26462 |
高危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
|
| libkrb5support0 |
CVE-2024-26462 |
高危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/kdc/ndr.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
|
| libldap-2.5-0 |
CVE-2023-2953 |
高危 |
2.5.13+dfsg-5 |
|
openldap: null pointer dereference in ber_memalloc_x function
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
|
| libmount1 |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| libperl5.36 |
CVE-2023-31484 |
高危 |
5.36.0-7+deb12u1 |
|
perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
|
| libpython3.11-minimal |
CVE-2024-7592 |
高危 |
3.11.2-6+deb12u4 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
|
| libpython3.11-stdlib |
CVE-2024-7592 |
高危 |
3.11.2-6+deb12u4 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
|
| libsmartcols1 |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| libsystemd0 |
CVE-2023-50387 |
高危 |
252.17-1~deb12u1 |
252.23-1~deb12u1 |
bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
|
| libsystemd0 |
CVE-2023-50868 |
高危 |
252.17-1~deb12u1 |
252.23-1~deb12u1 |
bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
|
| libudev1 |
CVE-2023-50387 |
高危 |
252.17-1~deb12u1 |
252.23-1~deb12u1 |
bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
|
| libudev1 |
CVE-2023-50868 |
高危 |
252.17-1~deb12u1 |
252.23-1~deb12u1 |
bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
|
| libuuid1 |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| mount |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| perl |
CVE-2023-31484 |
高危 |
5.36.0-7+deb12u1 |
|
perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
|
| perl-base |
CVE-2023-31484 |
高危 |
5.36.0-7+deb12u1 |
|
perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
|
| perl-modules-5.36 |
CVE-2023-31484 |
高危 |
5.36.0-7+deb12u1 |
|
perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
|
| python3-pkg-resources |
CVE-2024-6345 |
高危 |
66.1.1-1 |
|
pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
|
| python3-setuptools |
CVE-2024-6345 |
高危 |
66.1.1-1 |
|
pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
|
| python3-setuptools-whl |
CVE-2024-6345 |
高危 |
66.1.1-1 |
|
pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
|
| python3.11 |
CVE-2024-7592 |
高危 |
3.11.2-6+deb12u4 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
|
| python3.11-minimal |
CVE-2024-7592 |
高危 |
3.11.2-6+deb12u4 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
|
| python3.11-venv |
CVE-2024-7592 |
高危 |
3.11.2-6+deb12u4 |
|
cpython: python: Uncontrolled CPU resource consumption when in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
|
| util-linux |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| util-linux-extra |
CVE-2024-28085 |
高危 |
2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| bsdutils |
CVE-2024-28085 |
高危 |
1:2.38.1-5+b1 |
2.38.1-5+deb12u1 |
util-linux: CVE-2024-28085: wall: escape sequence injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
|
| libpam-runtime |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
|
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
|
| libpam0g |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-10-23 14:15 修改: 2024-11-26 16:15
|
| libpam0g |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
|
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
|
| libcurl3-gnutls |
CVE-2024-9681 |
中危 |
7.88.1-10+deb12u8 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-06 08:15 修改: 2024-11-25 19:52
|
| libcurl4 |
CVE-2024-9681 |
中危 |
7.88.1-10+deb12u8 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-06 08:15 修改: 2024-11-25 19:52
|
| libpython3.11-minimal |
CVE-2023-27043 |
中危 |
3.11.2-6+deb12u4 |
|
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
|
| libpython3.11-minimal |
CVE-2024-6923 |
中危 |
3.11.2-6+deb12u4 |
|
cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
|
| libpython3.11-minimal |
CVE-2024-9287 |
中危 |
3.11.2-6+deb12u4 |
|
python: Virtual environment (venv) activation scripts don't quote paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
|
| libc-bin |
CVE-2024-33602 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: netgroup cache assumes NSS callback uses in-buffer strings
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libpython3.11-stdlib |
CVE-2023-27043 |
中危 |
3.11.2-6+deb12u4 |
|
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
|
| libpython3.11-stdlib |
CVE-2024-6923 |
中危 |
3.11.2-6+deb12u4 |
|
cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
|
| libpython3.11-stdlib |
CVE-2024-9287 |
中危 |
3.11.2-6+deb12u4 |
|
python: Virtual environment (venv) activation scripts don't quote paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
|
| libexpat1 |
CVE-2024-50602 |
中危 |
2.5.0-1+deb12u1 |
|
libexpat: expat: DoS via XML_ResumeParser
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
|
| libgcrypt20 |
CVE-2024-2236 |
中危 |
1.10.1-3 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
|
| curl |
CVE-2024-9681 |
中危 |
7.88.1-10+deb12u8 |
|
curl: HSTS subdomain overwrites parent cache entry
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-06 08:15 修改: 2024-11-25 19:52
|
| libsystemd0 |
CVE-2023-7008 |
中危 |
252.17-1~deb12u1 |
252.21-1~deb12u1 |
systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
|
| libtinfo6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| libc-bin |
CVE-2023-6780 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: integer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6780
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-03-26 16:15
|
| libgnutls30 |
CVE-2023-5981 |
中危 |
3.7.9-2 |
3.7.9-2+deb12u1 |
gnutls: timing side-channel in the RSA-PSK authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
|
| libudev1 |
CVE-2023-7008 |
中危 |
252.17-1~deb12u1 |
252.21-1~deb12u1 |
systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
|
| libgnutls30 |
CVE-2024-28834 |
中危 |
3.7.9-2 |
3.7.9-2+deb12u3 |
gnutls: vulnerable to Minerva side-channel information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-21 14:15 修改: 2024-11-21 21:15
|
| login |
CVE-2023-4641 |
中危 |
1:4.13+dfsg1-1+b1 |
|
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
|
| libgnutls30 |
CVE-2024-28835 |
中危 |
3.7.9-2 |
3.7.9-2+deb12u3 |
gnutls: potential crash during chain building/verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28835
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-21 06:15 修改: 2024-11-22 12:15
|
| ncurses-base |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| ncurses-bin |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| passwd |
CVE-2023-4641 |
中危 |
1:4.13+dfsg1-1+b1 |
|
shadow-utils: possible password leak during passwd(1) change
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
|
| libc-bin |
CVE-2024-33600 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: null pointer dereferences after failed netgroup cache insertion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libc-bin |
CVE-2024-33601 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: netgroup cache may terminate daemon on memory allocation failure
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libc6 |
CVE-2023-6780 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u4 |
glibc: integer overflow in __vsyslog_internal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6780
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-01-31 14:15 修改: 2024-03-26 16:15
|
| libc6 |
CVE-2024-33600 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: null pointer dereferences after failed netgroup cache insertion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libc6 |
CVE-2024-33601 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: netgroup cache may terminate daemon on memory allocation failure
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libc6 |
CVE-2024-33602 |
中危 |
2.36-9+deb12u3 |
2.36-9+deb12u7 |
glibc: netgroup cache assumes NSS callback uses in-buffer strings
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
|
| libncursesw6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
|
| python3.11 |
CVE-2023-27043 |
中危 |
3.11.2-6+deb12u4 |
|
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
|
| python3.11 |
CVE-2024-6923 |
中危 |
3.11.2-6+deb12u4 |
|
cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
|
| python3.11 |
CVE-2024-9287 |
中危 |
3.11.2-6+deb12u4 |
|
python: Virtual environment (venv) activation scripts don't quote paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
|
| libpam-modules |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-10-23 14:15 修改: 2024-11-26 16:15
|
| python3.11-minimal |
CVE-2023-27043 |
中危 |
3.11.2-6+deb12u4 |
|
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
|
| python3.11-minimal |
CVE-2024-6923 |
中危 |
3.11.2-6+deb12u4 |
|
cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
|
| python3.11-minimal |
CVE-2024-9287 |
中危 |
3.11.2-6+deb12u4 |
|
python: Virtual environment (venv) activation scripts don't quote paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
|
| libpam-modules |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
|
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
|
| python3.11-venv |
CVE-2023-27043 |
中危 |
3.11.2-6+deb12u4 |
|
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
|
| python3.11-venv |
CVE-2024-6923 |
中危 |
3.11.2-6+deb12u4 |
|
cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
|
| python3.11-venv |
CVE-2024-9287 |
中危 |
3.11.2-6+deb12u4 |
|
python: Virtual environment (venv) activation scripts don't quote paths
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
|
| libpam-modules-bin |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-10-23 14:15 修改: 2024-11-26 16:15
|
| libpam-modules-bin |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
|
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
|
| libpam-runtime |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-10-23 14:15 修改: 2024-11-26 16:15
|
| libldap-2.5-0 |
CVE-2017-14159 |
低危 |
2.5.13+dfsg-5 |
|
openldap: Privilege escalation via PID file manipulation
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
|
| libldap-2.5-0 |
CVE-2017-17740 |
低危 |
2.5.13+dfsg-5 |
|
openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
|
| libldap-2.5-0 |
CVE-2020-15719 |
低危 |
2.5.13+dfsg-5 |
|
openldap: Certificate validation incorrectly matches name against CN-ID
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
|
| git-man |
CVE-2018-1000021 |
低危 |
1:2.39.5-0+deb12u1 |
|
git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-02-09 23:29 修改: 2024-10-24 17:58
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| git-man |
CVE-2022-24975 |
低危 |
1:2.39.5-0+deb12u1 |
|
git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2022-02-11 20:15 修改: 2024-08-03 05:15
|
| gpgv |
CVE-2022-3219 |
低危 |
2.2.40-1.1 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
|
| libapt-pkg6.0 |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
|
| apt |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| libc6 |
CVE-2010-4756 |
低危 |
2.36-9+deb12u3 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
|
| libc6 |
CVE-2018-20796 |
低危 |
2.36-9+deb12u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u3 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u3 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libperl5.36 |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u1 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
|
| libperl5.36 |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u1 |
|
http-tiny: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
|
| libpixman-1-0 |
CVE-2023-37769 |
低危 |
0.42.2-1 |
|
stress-test master commit e4c878 was discovered to contain a FPE vulne ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-07-17 20:15 修改: 2023-07-28 13:22
|
| libpng16-16 |
CVE-2021-4214 |
低危 |
1.6.39-2 |
|
libpng: hardcoded value leads to heap-overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2022-08-24 16:15 修改: 2022-11-08 02:32
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u3 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u3 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libc6 |
CVE-2019-9192 |
低危 |
2.36-9+deb12u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
|
| libcairo2 |
CVE-2017-7475 |
低危 |
1.16.0-7 |
|
cairo: NULL pointer dereference with a crafted font file
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
|
| libpython3.11-minimal |
CVE-2024-11168 |
低危 |
3.11.2-6+deb12u4 |
|
python: Improper validation of IPv6 and IPvFuture addresses
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-12 22:15 修改: 2024-12-03 21:15
|
| libcairo2 |
CVE-2018-18064 |
低危 |
1.16.0-7 |
|
cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
|
| libcairo2 |
CVE-2019-6461 |
低危 |
1.16.0-7 |
|
cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
|
| libcairo2 |
CVE-2019-6462 |
低危 |
1.16.0-7 |
|
cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
|
| coreutils |
CVE-2016-2781 |
低危 |
9.1-1 |
|
coreutils: Non-privileged session can escape to the parent session in chroot
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
|
| libpython3.11-stdlib |
CVE-2024-11168 |
低危 |
3.11.2-6+deb12u4 |
|
python: Improper validation of IPv6 and IPvFuture addresses
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-12 22:15 修改: 2024-12-03 21:15
|
| libcurl3-gnutls |
CVE-2024-2379 |
低危 |
7.88.1-10+deb12u8 |
|
curl: QUIC certificate check bypass with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| libsqlite3-0 |
CVE-2021-45346 |
低危 |
3.40.1-2+deb12u1 |
|
sqlite: crafted SQL query allows a malicious user to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15
|
| libstdc++6 |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| libstdc++6 |
CVE-2023-4039 |
低危 |
12.2.0-14 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
|
| coreutils |
CVE-2017-18018 |
低危 |
9.1-1 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
|
| libcurl4 |
CVE-2024-2379 |
低危 |
7.88.1-10+deb12u8 |
|
curl: QUIC certificate check bypass with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.2.15-2+b2 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
252.17-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| curl |
CVE-2024-2379 |
低危 |
7.88.1-10+deb12u8 |
|
curl: QUIC certificate check bypass with wolfSSL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
|
| libexpat1 |
CVE-2023-52426 |
低危 |
2.5.0-1+deb12u1 |
|
expat: recursive XML entity expansion vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15
|
| libexpat1 |
CVE-2024-28757 |
低危 |
2.5.0-1+deb12u1 |
|
expat: XML Entity Expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
|
| libgcc-s1 |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| libudev1 |
CVE-2013-4392 |
低危 |
252.17-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
|
| libudev1 |
CVE-2023-31437 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| libudev1 |
CVE-2023-31438 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| libudev1 |
CVE-2023-31439 |
低危 |
252.17-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
|
| libgcc-s1 |
CVE-2023-4039 |
低危 |
12.2.0-14 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| gcc-12-base |
CVE-2022-27943 |
低危 |
12.2.0-14 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
|
| login |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+b1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
|
| login |
CVE-2023-29383 |
低危 |
1:4.13+dfsg1-1+b1 |
|
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
|
| login |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+b1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.10.1-3 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
|
| mount |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| gcc-12-base |
CVE-2023-4039 |
低危 |
12.2.0-14 |
|
gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
|
| git |
CVE-2018-1000021 |
低危 |
1:2.39.5-0+deb12u1 |
|
git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-02-09 23:29 修改: 2024-10-24 17:58
|
| openssh-client |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u3 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2007-04-25 16:19 修改: 2017-07-29 01:31
|
| openssh-client |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u3 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2007-05-21 20:30 修改: 2021-04-01 15:32
|
| openssh-client |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u3 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2008-07-18 16:41 修改: 2017-09-29 01:31
|
| openssh-client |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2021-09-15 20:15 修改: 2024-08-06 04:16
|
| openssh-client |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-08-28 08:29 修改: 2019-03-07 16:29
|
| openssh-client |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2019-01-31 18:29 修改: 2023-02-23 23:29
|
| openssh-client |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-06-29 18:15 修改: 2022-04-28 19:34
|
| openssh-client |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
|
| openssh-client |
CVE-2023-51767 |
低危 |
1:9.2p1-2+deb12u3 |
|
openssh: authentication bypass via row hammer attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51767
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-12-24 07:15 修改: 2024-02-27 15:51
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.36-9+deb12u3 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+b1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
|
| passwd |
CVE-2023-29383 |
低危 |
1:4.13+dfsg1-1+b1 |
|
shadow: Improper input validation in shadow-utils package utility chfn
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+b1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| patch |
CVE-2010-4651 |
低危 |
2.7.6-7 |
|
patch: directory traversal flaw allows for arbitrary file creation
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4651
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2011-03-11 22:55 修改: 2016-11-28 19:07
|
| patch |
CVE-2018-6951 |
低危 |
2.7.6-7 |
|
patch: NULL pointer dereference in pch.c:intuit_diff_type() causes a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6951
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-02-13 19:29 修改: 2019-04-17 20:29
|
| patch |
CVE-2018-6952 |
低危 |
2.7.6-7 |
|
patch: Double free of memory in pch.c:another_hunk() causes a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6952
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-02-13 19:29 修改: 2019-04-17 20:29
|
| patch |
CVE-2021-45261 |
低危 |
2.7.6-7 |
|
patch: Invalid Pointer via another_hunk function
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45261
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2021-12-22 18:15 修改: 2021-12-28 14:24
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.36-9+deb12u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
|
| perl |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u1 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
|
| perl |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u1 |
|
http-tiny: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u3 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| perl-base |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u1 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
|
| perl-base |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u1 |
|
http-tiny: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
|
| libgnutls30 |
CVE-2011-3389 |
低危 |
3.7.9-2 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
|
| perl-modules-5.36 |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u1 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
|
| perl-modules-5.36 |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u1 |
|
http-tiny: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-04-29 00:15 修改: 2024-11-29 12:15
|
| python3-pip |
CVE-2018-20225 |
低危 |
23.0.1+dfsg-1 |
|
python-pip: when --extra-index-url option is used and package does not already exist in the public index, the installation of malicious package with arbitrary version number is possible.
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20225
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-05-08 18:15 修改: 2024-08-05 12:15
|
| python3-pip |
CVE-2023-5752 |
低危 |
23.0.1+dfsg-1 |
|
pip: Mercurial configuration injectable in repo revision when installing via pip
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-10-25 18:17 修改: 2024-06-10 18:15
|
| python3-pip-whl |
CVE-2018-20225 |
低危 |
23.0.1+dfsg-1 |
|
python-pip: when --extra-index-url option is used and package does not already exist in the public index, the installation of malicious package with arbitrary version number is possible.
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20225
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2020-05-08 18:15 修改: 2024-08-05 12:15
|
| python3-pip-whl |
CVE-2023-5752 |
低危 |
23.0.1+dfsg-1 |
|
pip: Mercurial configuration injectable in repo revision when installing via pip
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5752
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2023-10-25 18:17 修改: 2024-06-10 18:15
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u3 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libgssapi-krb5-2 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
|
| libgssapi-krb5-2 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
|
| libgssapi-krb5-2 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u3 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libk5crypto3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
|
| libk5crypto3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
|
| python3.11 |
CVE-2024-11168 |
低危 |
3.11.2-6+deb12u4 |
|
python: Improper validation of IPv6 and IPvFuture addresses
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-12 22:15 修改: 2024-12-03 21:15
|
| libk5crypto3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u3 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
|
| libkrb5-3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
|
| libkrb5-3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
|
| python3.11-minimal |
CVE-2024-11168 |
低危 |
3.11.2-6+deb12u4 |
|
python: Improper validation of IPv6 and IPvFuture addresses
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-12 22:15 修改: 2024-12-03 21:15
|
| libkrb5-3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.36-9+deb12u3 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
|
| libkrb5support0 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
|
| libkrb5support0 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
|
| python3.11-venv |
CVE-2024-11168 |
低危 |
3.11.2-6+deb12u4 |
|
python: Improper validation of IPv6 and IPvFuture addresses
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-11-12 22:15 修改: 2024-12-03 21:15
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
3.06-4 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| tar |
CVE-2005-2541 |
低危 |
1.34+dfsg-1.2 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
|
| tar |
CVE-2022-48303 |
低危 |
1.34+dfsg-1.2 |
1.34+dfsg-1.2+deb12u1 |
tar: heap buffer overflow at from_header() in list.c via specially crafted checksum
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
|
| tar |
CVE-2023-39804 |
低危 |
1.34+dfsg-1.2 |
1.34+dfsg-1.2+deb12u1 |
tar: Incorrectly handled extension attributes in PAX archives can lead to a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.34+dfsg-1.2 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libkrb5support0 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u2 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
|
| util-linux |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| git |
CVE-2022-24975 |
低危 |
1:2.39.5-0+deb12u1 |
|
git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2022-02-11 20:15 修改: 2024-08-03 05:15
|
| util-linux-extra |
CVE-2022-0563 |
低危 |
2.38.1-5+b1 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:92770f546e065c4942829b1f0d7d1f02c2eb1e6acf0d1bc08ef0bf6be4972839
发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
|
| libldap-2.5-0 |
CVE-2015-3276 |
低危 |
2.5.13+dfsg-5 |
|
openldap: incorrect multi-keyword mode cipherstring parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
|
| libcurl4 |
CVE-2024-11053 |
未知 |
7.88.1-10+deb12u8 |
|
When asked to both use a `.netrc` file for credentials and to follow H ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-12-11 08:15 修改: 2024-12-11 15:15
|
| curl |
CVE-2024-11053 |
未知 |
7.88.1-10+deb12u8 |
|
When asked to both use a `.netrc` file for credentials and to follow H ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-12-11 08:15 修改: 2024-12-11 15:15
|
| libcurl3-gnutls |
CVE-2024-11053 |
未知 |
7.88.1-10+deb12u8 |
|
When asked to both use a `.netrc` file for credentials and to follow H ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11053
镜像层: sha256:534cdd51440c766e35d9068701df2e0dc0b575a8a075bce9d0cbaba9d659c458
发布日期: 2024-12-11 08:15 修改: 2024-12-11 15:15
|