docker.io/frappe/erpnext:v16.25.0 linux/amd64

docker.io/frappe/erpnext:v16.25.0 - Trivy安全扫描结果 扫描时间: 2026-06-25 21:08
全部漏洞信息
低危漏洞:336 中危漏洞:308 高危漏洞:174 严重漏洞:30

系统OS: debian 12.13 扫描引擎: Trivy 扫描时间: 2026-06-25 21:08

docker.io/frappe/erpnext:v16.25.0 (debian 12.13) (debian)
低危漏洞:325 中危漏洞:220 高危漏洞:97 严重漏洞:24
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libgbm1 CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
libgl1-mesa-dri CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
libglapi-mesa CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
libglx-mesa0 CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
libgnutls30 CVE-2026-33845 严重 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-30 18:16 修改: 2026-06-24 17:16
libgnutls30 CVE-2026-42010 严重 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-07 12:16 修改: 2026-06-24 17:16
libmariadb3 CVE-2026-44172 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB server: SQL injection vulnerability via improper handling of big5 character set with mysql_real_escape_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44172

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
libmariadb3 CVE-2026-49261 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49261

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 18:16 修改: 2026-06-17 14:35
libperl5.36 CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
libperl5.36 CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
libsqlite3-0 CVE-2025-7458 严重 3.40.1-2+deb12u2 sqlite: SQLite integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2025-07-29 13:15 修改: 2026-06-17 10:04
mariadb-client CVE-2026-44172 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB server: SQL injection vulnerability via improper handling of big5 character set with mysql_real_escape_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44172

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-client CVE-2026-49261 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49261

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 18:16 修改: 2026-06-17 14:35
mariadb-client-core CVE-2026-44172 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB server: SQL injection vulnerability via improper handling of big5 character set with mysql_real_escape_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44172

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-client-core CVE-2026-49261 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49261

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 18:16 修改: 2026-06-17 14:35
mariadb-common CVE-2026-44172 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB server: SQL injection vulnerability via improper handling of big5 character set with mysql_real_escape_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44172

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-common CVE-2026-49261 严重 1:10.11.14-0+deb12u2 mariadb: MariaDB Server: Arbitrary code execution via wsrep_notify_cmd

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49261

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 18:16 修改: 2026-06-17 14:35
perl CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
perl-base CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl-base CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
perl-modules-5.36 CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl-modules-5.36 CVE-2026-8376 严重 5.36.0-7+deb12u3 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
zlib1g CVE-2023-45853 严重 1:1.2.13.dfsg-1 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-10-14 02:15 修改: 2026-06-17 06:29
libjq1 CVE-2026-40164 高危 1.6-2.1+deb12u1 jq: jq: Denial of Service via crafted JSON object causing hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40164

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-14 00:16 修改: 2026-06-17 10:44
libjq1 CVE-2026-49839 高危 1.6-2.1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49839

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libldap-2.5-0 CVE-2023-2953 高危 2.5.13+dfsg-5 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-30 22:15 修改: 2026-06-17 05:53
libcurl3-gnutls CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
libcurl4 CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
libmariadb3 CVE-2025-13699 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13699

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-23 22:15 修改: 2026-06-17 08:34
libmariadb3 CVE-2026-44168 高危 1:10.11.14-0+deb12u2 MariaDB server is a community developed fork of MySQL server. From ver ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-18 15:19
libmariadb3 CVE-2026-44171 高危 1:10.11.14-0+deb12u2 MariaDB: mbstream: MariaDB mbstream: Unauthorized file creation via path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44171

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
libmariadb3 CVE-2026-48163 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via improper parameter validation during SST

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48163

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
libmariadb3 CVE-2026-48165 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via global system variable manipulation by a high-privileged user

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48165

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
libncurses6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
libncursesw6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
libcurl4 CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
libexpat1 CVE-2025-59375 高危 2.5.0-1+deb12u2 firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46
libperl5.36 CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
libperl5.36 CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
libperl5.36 CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
libsndfile1 CVE-2026-37555 高危 1.2.0-1+deb12u1 libsndfile: integer overflow in ima_reader_init()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-37555

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-29 16:16 修改: 2026-06-17 10:41
libexpat1 CVE-2026-25210 高危 2.5.0-1+deb12u2 libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24
libsqlite3-0 CVE-2026-11822 高危 3.40.1-2+deb12u2 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
libsqlite3-0 CVE-2026-11824 高危 3.40.1-2+deb12u2 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
libssh2-1 CVE-2026-55200 高危 1.10.0-3+b1 libssh2: libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55200

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 20:17 修改: 2026-06-24 17:17
libssh2-1 CVE-2026-7598 高危 1.10.0-3+b1 libssh2: integer overflow via large username or password arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-01 22:16 修改: 2026-06-17 11:02
libtinfo6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
libexpat1 CVE-2026-45186 高危 2.5.0-1+deb12u2 libexpat: denial of service via crafted XML input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-10 07:16 修改: 2026-06-17 10:51
curl CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
mariadb-client CVE-2025-13699 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13699

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-23 22:15 修改: 2026-06-17 08:34
mariadb-client CVE-2026-44168 高危 1:10.11.14-0+deb12u2 MariaDB server is a community developed fork of MySQL server. From ver ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-18 15:19
mariadb-client CVE-2026-44171 高危 1:10.11.14-0+deb12u2 MariaDB: mbstream: MariaDB mbstream: Unauthorized file creation via path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44171

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-client CVE-2026-48163 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via improper parameter validation during SST

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48163

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
mariadb-client CVE-2026-48165 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via global system variable manipulation by a high-privileged user

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48165

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
curl CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
jq CVE-2026-32316 高危 1.6-2.1+deb12u1 jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32316

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 18:16 修改: 2026-06-17 10:35
mariadb-client-core CVE-2025-13699 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13699

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-23 22:15 修改: 2026-06-17 08:34
mariadb-client-core CVE-2026-44168 高危 1:10.11.14-0+deb12u2 MariaDB server is a community developed fork of MySQL server. From ver ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-18 15:19
mariadb-client-core CVE-2026-44171 高危 1:10.11.14-0+deb12u2 MariaDB: mbstream: MariaDB mbstream: Unauthorized file creation via path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44171

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-client-core CVE-2026-48163 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via improper parameter validation during SST

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48163

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
mariadb-client-core CVE-2026-48165 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via global system variable manipulation by a high-privileged user

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48165

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
jq CVE-2026-40164 高危 1.6-2.1+deb12u1 jq: jq: Denial of Service via crafted JSON object causing hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40164

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-14 00:16 修改: 2026-06-17 10:44
jq CVE-2026-49839 高危 1.6-2.1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49839

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mariadb-common CVE-2025-13699 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13699

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-23 22:15 修改: 2026-06-17 08:34
mariadb-common CVE-2026-44168 高危 1:10.11.14-0+deb12u2 MariaDB server is a community developed fork of MySQL server. From ver ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-18 15:19
mariadb-common CVE-2026-44171 高危 1:10.11.14-0+deb12u2 MariaDB: mbstream: MariaDB mbstream: Unauthorized file creation via path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44171

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mariadb-common CVE-2026-48163 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via improper parameter validation during SST

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48163

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
mariadb-common CVE-2026-48165 高危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Arbitrary code execution via global system variable manipulation by a high-privileged user

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48165

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:54
ncurses-base CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
ncurses-bin CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
libcurl3-gnutls CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
libgnutls30 CVE-2026-33846 高危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-04 10:15 修改: 2026-06-24 17:16
perl CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
libgnutls30 CVE-2026-3833 高危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-30 18:16 修改: 2026-06-24 17:16
libgnutls30 CVE-2026-42009 高危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-18 13:16 修改: 2026-06-24 17:16
perl-base CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl-base CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-base CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
libharfbuzz-subset0 CVE-2023-25193 高危 6.0.0+dfsg-3 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-02-04 20:15 修改: 2026-06-17 05:40
libharfbuzz0b CVE-2023-25193 高危 6.0.0+dfsg-3 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-02-04 20:15 修改: 2026-06-17 05:40
perl-modules-5.36 CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
perl-modules-5.36 CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-modules-5.36 CVE-2026-9538 高危 5.36.0-7+deb12u3 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
vim CVE-2026-26269 高危 2:9.0.1378-2+deb12u2 vim: Netbeans specialKeys stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26269

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-13 20:17 修改: 2026-06-17 10:26
vim CVE-2026-28417 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-28421 高危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of service and information disclosure via crafted swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-33412 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in glob() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37
vim CVE-2026-34982 高危 2:9.0.1378-2+deb12u2 vim: arbitrary command execution via modeline sandbox bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:39
vim CVE-2026-35177 高危 2:9.0.1378-2+deb12u2 vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35177

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 18:16 修改: 2026-06-17 10:40
vim CVE-2026-39881 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in NetBeans interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39881

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-08 21:17 修改: 2026-06-17 10:42
vim CVE-2026-46483 高危 2:9.0.1378-2+deb12u2 vim: command injection when decompressing .tgz archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46483

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:53
vim CVE-2026-47162 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47162

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
vim CVE-2026-52858 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52858

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
vim CVE-2026-52860 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution through Python omni-completion.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52860

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
vim-common CVE-2026-26269 高危 2:9.0.1378-2+deb12u2 vim: Netbeans specialKeys stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26269

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-13 20:17 修改: 2026-06-17 10:26
vim-common CVE-2026-28417 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-28421 高危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of service and information disclosure via crafted swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-33412 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in glob() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37
vim-common CVE-2026-34982 高危 2:9.0.1378-2+deb12u2 vim: arbitrary command execution via modeline sandbox bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:39
vim-common CVE-2026-35177 高危 2:9.0.1378-2+deb12u2 vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35177

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 18:16 修改: 2026-06-17 10:40
vim-common CVE-2026-39881 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in NetBeans interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39881

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-08 21:17 修改: 2026-06-17 10:42
vim-common CVE-2026-46483 高危 2:9.0.1378-2+deb12u2 vim: command injection when decompressing .tgz archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46483

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:53
vim-common CVE-2026-47162 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47162

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
vim-common CVE-2026-52858 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52858

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
vim-common CVE-2026-52860 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution through Python omni-completion.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52860

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
vim-runtime CVE-2026-26269 高危 2:9.0.1378-2+deb12u2 vim: Netbeans specialKeys stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26269

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-13 20:17 修改: 2026-06-17 10:26
vim-runtime CVE-2026-28417 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-28421 高危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of service and information disclosure via crafted swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-33412 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in glob() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37
vim-runtime CVE-2026-34982 高危 2:9.0.1378-2+deb12u2 vim: arbitrary command execution via modeline sandbox bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34982

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:39
vim-runtime CVE-2026-35177 高危 2:9.0.1378-2+deb12u2 vim: zip.vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35177

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-06 18:16 修改: 2026-06-17 10:40
vim-runtime CVE-2026-39881 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via command injection in NetBeans interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39881

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-08 21:17 修改: 2026-06-17 10:42
vim-runtime CVE-2026-46483 高危 2:9.0.1378-2+deb12u2 vim: command injection when decompressing .tgz archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46483

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:53
vim-runtime CVE-2026-47162 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47162

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
vim-runtime CVE-2026-52858 高危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52858

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
vim-runtime CVE-2026-52860 高危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution through Python omni-completion.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52860

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
xdg-utils CVE-2022-4055 高危 1.1.3-4.1 xdg-utils: improper parse of mailto URIs allows bypass of Thunderbird security mechanism for attachments

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4055

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2022-11-19 00:15 修改: 2026-06-17 05:19
libjq1 CVE-2026-32316 高危 1.6-2.1+deb12u1 jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32316

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 18:16 修改: 2026-06-17 10:35
libjq1 CVE-2026-43896 中危 1.6-2.1+deb12u1 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
libjq1 CVE-2026-44777 中危 1.6-2.1+deb12u1 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:51
jq CVE-2026-41256 中危 1.6-2.1+deb12u1 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46
liblzma5 CVE-2026-34743 中危 5.4.1-1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
jq CVE-2026-41257 中危 1.6-2.1+deb12u1 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46
jq CVE-2026-43894 中危 1.6-2.1+deb12u1 jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43894

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
jq CVE-2026-43895 中危 1.6-2.1+deb12u1 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
jq CVE-2026-43896 中危 1.6-2.1+deb12u1 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
jq CVE-2026-44777 中危 1.6-2.1+deb12u1 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:51
libasound2 CVE-2026-25068 中危 1.2.8-1+b1 alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-29 20:16 修改: 2026-06-17 10:24
libasound2-data CVE-2026-25068 中危 1.2.8-1 alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-29 20:16 修改: 2026-06-17 10:24
libmariadb3 CVE-2026-21968 中危 1:10.11.14-0+deb12u2 mysql: Optimizer unspecified vulnerability (CPU Jan 2026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21968

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:19
libmariadb3 CVE-2026-44169 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44169

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 16:24
libmariadb3 CVE-2026-44173 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44173

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
libmount1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
libmount1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libblkid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
libncurses6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
libblkid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libncursesw6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
libnss3 CVE-2023-5388 中危 2:3.87.1-1+deb12u2 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-19 12:15 修改: 2026-06-17 06:48
libnss3 CVE-2023-6135 中危 2:3.87.1-1+deb12u2 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-12-19 14:15 修改: 2026-06-17 06:50
libnss3 CVE-2024-7531 中危 2:3.87.1-1+deb12u2 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-06 13:15 修改: 2026-06-17 08:20
libnss3 CVE-2026-6766 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6766

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
libnss3 CVE-2026-6767 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Other issue in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6767

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
libnss3 CVE-2026-6772 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6772

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
libpam-modules CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-10-23 14:15 修改: 2026-06-17 06:54
libpam-modules CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
libpam-modules-bin CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-10-23 14:15 修改: 2026-06-17 06:54
libpam-modules-bin CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
libpam-runtime CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-10-23 14:15 修改: 2026-06-17 06:54
libpam-runtime CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
libpam0g CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-10-23 14:15 修改: 2026-06-17 06:54
libpam0g CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
libbz2-1.0 CVE-2026-42250 中危 1.0.8-5+b1 bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47
libc-bin CVE-2026-0915 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
libc-bin CVE-2026-4046 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
libc-bin CVE-2026-4437 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libc-bin CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
libperl5.36 CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
libperl5.36 CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
libperl5.36 CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
libperl5.36 CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
libperl5.36 CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
libsmartcols1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
libsmartcols1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libc-bin CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libsndfile1 CVE-2024-50613 中危 1.2.0-1+deb12u1 libsndfile: Reachable assertion in mpeg_l3_encoder_close

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50613

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-10-27 22:15 修改: 2026-06-17 08:04
libsndfile1 CVE-2025-56226 中危 1.2.0-1+deb12u1 libsndfile: memory leak when encoding MP3 files due to an incomplete initialization

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-56226

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-14 15:15 修改: 2026-06-17 09:42
libc-bin CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libc-bin CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
libc6 CVE-2026-0915 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
libsqlite3-0 CVE-2025-7709 中危 3.40.1-2+deb12u2 An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2025-09-08 15:15 修改: 2026-06-17 10:05
libc6 CVE-2026-4046 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
libc6 CVE-2026-4437 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libssh2-1 CVE-2026-55199 中危 1.10.0-3+b1 libssh2: libssh2: Denial of Service via crafted SSH_MSG_EXT_INFO message

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55199

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 20:17 修改: 2026-06-22 18:43
libsystemd0 CVE-2026-29111 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
libsystemd0 CVE-2026-40225 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libsystemd0 CVE-2026-40226 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libsystemd0 CVE-2026-4105 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
libc6 CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
libtinfo6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
libudev1 CVE-2026-29111 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
libudev1 CVE-2026-40225 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libudev1 CVE-2026-40226 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libudev1 CVE-2026-4105 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
libuuid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
libuuid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libxml2 CVE-2026-0990 中危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-15 15:15 修改: 2026-06-17 10:11
libxml2 CVE-2026-6653 中危 2.9.14+dfsg-1.3~deb12u5 Use After Free in libxml2's xmlParseInternalSubset from GNOME libxml2 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6653

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-22 14:17 修改: 2026-06-22 18:16
libxpm4 CVE-2026-4367 中危 1:3.5.12-1.1+deb12u1 libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-16 19:16 修改: 2026-06-17 10:56
libc6 CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libc6 CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59
libc6 CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
curl CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
curl CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
libcurl3-gnutls CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16
libcurl3-gnutls CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
mariadb-client CVE-2026-21968 中危 1:10.11.14-0+deb12u2 mysql: Optimizer unspecified vulnerability (CPU Jan 2026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21968

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:19
mariadb-client CVE-2026-44169 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44169

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 16:24
mariadb-client CVE-2026-44173 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44173

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
libcurl3-gnutls CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
libcurl3-gnutls CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57
libcurl3-gnutls CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
libcurl3-gnutls CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
libcurl3-gnutls CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
libcurl3-gnutls CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01
curl CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57
mariadb-client-core CVE-2026-21968 中危 1:10.11.14-0+deb12u2 mysql: Optimizer unspecified vulnerability (CPU Jan 2026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21968

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:19
mariadb-client-core CVE-2026-44169 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44169

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 16:24
mariadb-client-core CVE-2026-44173 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44173

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
curl CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
libcurl4 CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16
libcurl4 CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
libcurl4 CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44
libcurl4 CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57
libcurl4 CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59
libcurl4 CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
mariadb-common CVE-2026-21968 中危 1:10.11.14-0+deb12u2 mysql: Optimizer unspecified vulnerability (CPU Jan 2026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21968

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:19
mariadb-common CVE-2026-44169 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB server: Information disclosure of stored routine definitions due to insufficient privilege check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44169

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 16:24
mariadb-common CVE-2026-44173 中危 1:10.11.14-0+deb12u2 mariadb: MariaDB: Privilege bypass allows unauthorized file write via subqueries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44173

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-12 18:16 修改: 2026-06-17 10:50
mount CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
mount CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libcurl4 CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
ncurses-base CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
libcurl4 CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01
ncurses-bin CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
nginx CVE-2026-42055 中危 1.22.1-9+deb12u8 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 15:16 修改: 2026-06-18 04:16
nginx CVE-2026-48142 中危 1.22.1-9+deb12u8 nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
nginx-common CVE-2026-42055 中危 1.22.1-9+deb12u8 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 15:16 修改: 2026-06-18 04:16
nginx-common CVE-2026-48142 中危 1.22.1-9+deb12u8 nginx: NGINX: Memory disclosure or denial of service via ngx_http_charset_module heap buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-17 15:16 修改: 2026-06-22 16:50
libdav1d6 CVE-2023-32570 中危 1.0.0-2+deb12u1 VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that ca ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32570

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-10 05:15 修改: 2026-06-17 05:59
curl CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
curl CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00
curl CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01
libexpat1 CVE-2025-66382 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
perl CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
perl CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
perl CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
libexpat1 CVE-2026-32776 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service due to NULL pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
libexpat1 CVE-2026-32777 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
libexpat1 CVE-2026-32778 中危 2.5.0-1+deb12u2 libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
libexpat1 CVE-2026-50219 中危 2.5.0-1+deb12u2 expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57
libexpat1 CVE-2026-56132 中危 2.5.0-1+deb12u2 In libexpat before 2.8.2, there is a heap-based buffer overflow in doP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
perl-base CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
perl-base CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
perl-base CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-base CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-base CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
libexpat1 CVE-2026-56403 中危 2.5.0-1+deb12u2 libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
libexpat1 CVE-2026-56404 中危 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in addBinding.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
libexpat1 CVE-2026-56405 中危 2.5.0-1+deb12u2 libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14
libexpat1 CVE-2026-56406 中危 2.5.0-1+deb12u2 libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29
libexpat1 CVE-2026-56410 中危 2.5.0-1+deb12u2 libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18
perl-modules-5.36 CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
perl-modules-5.36 CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
perl-modules-5.36 CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-modules-5.36 CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
perl-modules-5.36 CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
sed CVE-2026-5958 中危 4.9-1 4.9-1+deb12u1 sed: GNU sed TOCTOU race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-20 12:16 修改: 2026-06-17 10:59
tar CVE-2026-5704 中危 1.34+dfsg-1.2+deb12u1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
util-linux CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
util-linux CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
util-linux-extra CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
util-linux-extra CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libexpat1 CVE-2026-56411 中危 2.5.0-1+deb12u2 expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16
libexpat1 CVE-2026-56412 中危 2.5.0-1+deb12u2 libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31
dpkg CVE-2026-2219 中危 1.21.22 1.21.23 It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-07 09:16 修改: 2026-06-17 10:30
libgcrypt20 CVE-2026-41989 中危 1.10.1-3 1.10.1-3+deb12u1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-23 05:16 修改: 2026-06-17 10:47
gpg CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08
gpg CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59
gpgconf CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08
gpgconf CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59
gpgv CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08
gpgv CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59
bsdutils CVE-2026-27456 中危 1:2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
vim CVE-2025-29768 中危 2:9.0.1378-2+deb12u2 vim: Vim vulnerable to potential data loss with zip.vim and special crafted zip files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29768

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-03-13 17:15 修改: 2026-06-17 09:05
vim CVE-2025-53905 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversial

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim CVE-2025-53906 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim CVE-2026-25749 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via 'helpfile' option processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-06 23:15 修改: 2026-06-17 10:25
vim CVE-2026-28418 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28418

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-28420 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28420

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-41411 中危 2:9.0.1378-2+deb12u2 vim: Vim: Command injection allows arbitrary code execution via malicious tag files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41411

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46
vim CVE-2026-42307 中危 2:9.0.1378-2+deb12u2 Vim: Vim: Arbitrary code execution via OS command injection in netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42307

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:47
vim CVE-2026-43961 中危 2:9.0.1378-2+deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
vim CVE-2026-44656 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary command execution via :find command-line completion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44656

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim CVE-2026-45130 中危 2:9.0.1378-2+deb12u2 vim: Vim: Heap buffer overflow allows arbitrary code execution or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45130

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim CVE-2026-47167 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47167

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
bsdutils CVE-2026-3184 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
libgnutls30 CVE-2025-14831 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u6 gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-02-09 15:16 修改: 2026-06-17 08:36
libgnutls30 CVE-2026-42011 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-07 15:16 修改: 2026-06-24 17:16
libgnutls30 CVE-2026-42012 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 22:16 修改: 2026-06-24 17:17
libgnutls30 CVE-2026-42013 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 22:16 修改: 2026-06-24 17:17
libgnutls30 CVE-2026-42014 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-16 02:16 修改: 2026-06-24 17:17
libgnutls30 CVE-2026-42015 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 22:16 修改: 2026-06-24 17:17
libgnutls30 CVE-2026-5260 中危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-05-26 22:16 修改: 2026-06-24 17:17
libgraphite2-3 CVE-2026-50593 中危 1.3.14-1 Graphite before 1.3.15 has an integer underflow and resultant out-of-b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50593

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-05 04:17 修改: 2026-06-17 10:57
curl CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16
libharfbuzz-subset0 CVE-2026-22693 中危 6.0.0+dfsg-3 harfbuzz: Null Pointer Dereference in harfbuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-10 06:15 修改: 2026-06-17 10:20
vim-common CVE-2025-29768 中危 2:9.0.1378-2+deb12u2 vim: Vim vulnerable to potential data loss with zip.vim and special crafted zip files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29768

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-03-13 17:15 修改: 2026-06-17 09:05
vim-common CVE-2025-53905 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversial

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim-common CVE-2025-53906 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim-common CVE-2026-25749 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via 'helpfile' option processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-06 23:15 修改: 2026-06-17 10:25
vim-common CVE-2026-28418 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28418

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-28420 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28420

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-41411 中危 2:9.0.1378-2+deb12u2 vim: Vim: Command injection allows arbitrary code execution via malicious tag files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41411

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46
vim-common CVE-2026-42307 中危 2:9.0.1378-2+deb12u2 Vim: Vim: Arbitrary code execution via OS command injection in netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42307

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:47
vim-common CVE-2026-43961 中危 2:9.0.1378-2+deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
vim-common CVE-2026-44656 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary command execution via :find command-line completion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44656

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim-common CVE-2026-45130 中危 2:9.0.1378-2+deb12u2 vim: Vim: Heap buffer overflow allows arbitrary code execution or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45130

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim-common CVE-2026-47167 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47167

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
jq CVE-2026-33947 中危 1.6-2.1+deb12u1 jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33947

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 22:16 修改: 2026-06-17 10:38
libharfbuzz0b CVE-2026-22693 中危 6.0.0+dfsg-3 harfbuzz: Null Pointer Dereference in harfbuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-10 06:15 修改: 2026-06-17 10:20
jq CVE-2026-33948 中危 1.6-2.1+deb12u1 jq: jq: Input validation bypass via embedded NUL bytes allows parser differential attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33948

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-14 00:16 修改: 2026-06-17 10:38
jq CVE-2026-39956 中危 1.6-2.1+deb12u1 jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39956

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 23:16 修改: 2026-06-17 10:42
jq CVE-2026-39979 中危 1.6-2.1+deb12u1 jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39979

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 23:16 修改: 2026-06-17 10:42
libjq1 CVE-2026-33947 中危 1.6-2.1+deb12u1 jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33947

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 22:16 修改: 2026-06-17 10:38
libjq1 CVE-2026-33948 中危 1.6-2.1+deb12u1 jq: jq: Input validation bypass via embedded NUL bytes allows parser differential attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33948

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-14 00:16 修改: 2026-06-17 10:38
libjq1 CVE-2026-39956 中危 1.6-2.1+deb12u1 jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39956

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 23:16 修改: 2026-06-17 10:42
libjq1 CVE-2026-39979 中危 1.6-2.1+deb12u1 jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39979

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-13 23:16 修改: 2026-06-17 10:42
libjq1 CVE-2026-41256 中危 1.6-2.1+deb12u1 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46
libjq1 CVE-2026-41257 中危 1.6-2.1+deb12u1 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:46
vim-runtime CVE-2025-29768 中危 2:9.0.1378-2+deb12u2 vim: Vim vulnerable to potential data loss with zip.vim and special crafted zip files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29768

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-03-13 17:15 修改: 2026-06-17 09:05
vim-runtime CVE-2025-53905 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversial

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53905

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim-runtime CVE-2025-53906 中危 2:9.0.1378-2+deb12u2 vim: Vim path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53906

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-07-15 21:15 修改: 2026-06-17 09:39
vim-runtime CVE-2026-25749 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary code execution via 'helpfile' option processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-06 23:15 修改: 2026-06-17 10:25
vim-runtime CVE-2026-28418 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure via heap-based buffer overflow in Emacs-style tags file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28418

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-28420 中危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via crafted Unicode characters in terminal emulator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28420

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-41411 中危 2:9.0.1378-2+deb12u2 vim: Vim: Command injection allows arbitrary code execution via malicious tag files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41411

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-24 17:16 修改: 2026-06-17 10:46
vim-runtime CVE-2026-42307 中危 2:9.0.1378-2+deb12u2 Vim: Vim: Arbitrary code execution via OS command injection in netrw plugin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42307

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:47
vim-runtime CVE-2026-43961 中危 2:9.0.1378-2+deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43961

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
vim-runtime CVE-2026-44656 中危 2:9.0.1378-2+deb12u2 vim: Vim: Arbitrary command execution via :find command-line completion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44656

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim-runtime CVE-2026-45130 中危 2:9.0.1378-2+deb12u2 vim: Vim: Heap buffer overflow allows arbitrary code execution or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45130

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-08 23:16 修改: 2026-06-17 10:51
vim-runtime CVE-2026-47167 中危 2:9.0.1378-2+deb12u2 Vim is an open source, command line text editor. Prior to version 9.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47167

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:54
libjq1 CVE-2026-43894 中危 1.6-2.1+deb12u1 jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43894

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
xdg-utils CVE-2020-27748 中危 1.1.3-4.1 xdg-utils: local file inclusion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27748

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2021-06-01 14:15 修改: 2026-06-17 03:09
libjq1 CVE-2026-43895 中危 1.6-2.1+deb12u1 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:50
zlib1g CVE-2026-27171 中危 1:1.2.13.dfsg-1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
libsqlite3-0 CVE-2021-45346 低危 3.40.1-2+deb12u2 sqlite: crafted SQL query allows a malicious user to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2022-02-14 19:15 修改: 2026-06-17 04:13
libsqlite3-0 CVE-2025-29088 低危 3.40.1-2+deb12u2 sqlite: Denial of Service in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2025-04-10 14:15 修改: 2026-06-17 09:05
libsqlite3-0 CVE-2025-70873 低危 3.40.1-2+deb12u2 sqlite: SQLite: Information Disclosure via Crafted ZIP File

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-03-12 19:16 修改: 2026-06-17 10:03
libexpat1 CVE-2023-52426 低危 2.5.0-1+deb12u2 expat: recursive XML entity expansion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-04 20:15 修改: 2026-06-17 06:42
libexpat1 CVE-2024-28757 低危 2.5.0-1+deb12u2 expat: XML Entity Expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-10 05:15 修改: 2026-06-17 07:21
libexpat1 CVE-2026-24515 低危 2.5.0-1+deb12u2 libexpat: libexpat null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23
libssl-dev CVE-2025-27587 低危 3.0.20-1~deb12u2 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
libssl-dev CVE-2026-42767 低危 3.0.20-1~deb12u2 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
libssl3 CVE-2025-27587 低危 3.0.20-1~deb12u2 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
libssl3 CVE-2026-42767 低危 3.0.20-1~deb12u2 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
libstdc++6 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
libexpat1 CVE-2026-41080 低危 2.5.0-1+deb12u2 libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-04-16 17:16 修改: 2026-06-17 10:46
libc-bin CVE-2026-0861 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
libgbm1 CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libgbm1 CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libsystemd0 CVE-2013-4392 低危 252.39-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libsystemd0 CVE-2023-31437 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libsystemd0 CVE-2023-31438 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libsystemd0 CVE-2023-31439 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libsystemd0 CVE-2026-40228 低危 252.39-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libtasn1-6 CVE-2025-13151 低危 4.19.0-2+deb12u1 libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33
libgbm1 CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libgbm1 CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libtinfo6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
libgcc-s1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
libc-bin CVE-2026-4438 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libgcrypt20 CVE-2018-6829 低危 1.10.1-3 libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2018-02-07 23:29 修改: 2026-06-17 02:02
libgcrypt20 CVE-2024-2236 低危 1.10.1-3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
libudev1 CVE-2013-4392 低危 252.39-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libudev1 CVE-2023-31437 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libudev1 CVE-2023-31438 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libudev1 CVE-2023-31439 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
libudev1 CVE-2026-40228 低危 252.39-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
libgl1 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
bsdutils CVE-2022-0563 低危 1:2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
libuuid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
libuuid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libgl1-mesa-dri CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libgl1-mesa-dri CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libxml2 CVE-2025-8732 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Uncontrolled Recursion Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-08-08 17:15 修改: 2026-06-17 10:07
libxml2 CVE-2026-0989 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-15 15:15 修改: 2026-06-17 10:11
libxml2 CVE-2026-0992 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: libxml2: Denial of Service via crafted XML catalogs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-15 15:15 修改: 2026-06-17 10:11
libxml2 CVE-2026-1757 低危 2.9.14+dfsg-1.3~deb12u5 libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-02 13:15 修改: 2026-06-17 10:16
libgl1-mesa-dri CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libxtables12 CVE-2012-2663 低危 1.8.9-2 iptables: --syn flag bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
login CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
login CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
login TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgl1-mesa-dri CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
gpgv CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59
libglapi-mesa CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libglapi-mesa CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libglapi-mesa CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libglapi-mesa CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libglib2.0-0 CVE-2012-0039 低危 2.74.6-2+deb12u9 glib2: hash table collisions CPU usage DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
libglvnd0 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
curl CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24
libglx-mesa0 CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libglx-mesa0 CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libglx-mesa0 CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
libglx-mesa0 CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
libglx0 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
curl CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27
curl CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27
curl CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29
curl CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35
libc6 CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc6 CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
libc6 CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc6 CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
libc6 CVE-2025-15281 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
libgnutls30 CVE-2011-3389 低危 3.7.9-2+deb12u5 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
libgnutls30 CVE-2025-9820 低危 3.7.9-2+deb12u5 3.7.9-2+deb12u6 gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-26 20:16 修改: 2026-06-17 10:09
libgnutls30 CVE-2026-5419 低危 3.7.9-2+deb12u5 3.7.9-2+deb12u7 guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-01 21:16 修改: 2026-06-24 17:17
libc6 CVE-2026-0861 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
libgssapi-krb5-2 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
libgssapi-krb5-2 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
mount CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
mount CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libgssapi-krb5-2 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libgssapi-krb5-2 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
ncurses-base CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
libc6 CVE-2026-4438 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
libcairo2 CVE-2017-7475 低危 1.16.0-7 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24
ncurses-bin CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
libcairo2 CVE-2018-18064 低危 1.16.0-7 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46
libcairo2 CVE-2019-6461 低危 1.16.0-7 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2019-01-16 18:29 修改: 2026-06-17 02:39
nginx CVE-2009-4487 低危 1.22.1-9+deb12u8 nginx: Absent sanitation of escape sequences in web server log

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
nginx CVE-2013-0337 低危 1.22.1-9+deb12u8 The default configuration of nginx, possibly 1.3.13 and earlier, uses ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
nginx CVE-2023-44487 低危 1.22.1-9+deb12u8 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
libcairo2 CVE-2019-6462 低危 1.16.0-7 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2019-01-16 18:29 修改: 2026-06-17 02:39
libcairo2 CVE-2025-50422 低危 1.16.0-7 poppler: Poppler crash on malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50422

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-08-04 17:15 修改: 2026-06-17 09:35
nginx-common CVE-2009-4487 低危 1.22.1-9+deb12u8 nginx: Absent sanitation of escape sequences in web server log

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
nginx-common CVE-2013-0337 低危 1.22.1-9+deb12u8 The default configuration of nginx, possibly 1.3.13 and earlier, uses ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
nginx-common CVE-2023-44487 低危 1.22.1-9+deb12u8 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-10 14:15 修改: 2026-06-17 06:27
openssl CVE-2025-27587 低危 3.0.20-1~deb12u2 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
openssl CVE-2026-42767 低危 3.0.20-1~deb12u2 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
passwd CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
passwd CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
passwd TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
curl CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
curl CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
curl CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
bsdutils CVE-2025-14104 低危 1:2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
dpkg CVE-2025-6297 低危 1.21.22 1.21.23 It was discovered that dpkg-deb does not properly sanitize directory p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-07-01 17:15 修改: 2026-06-17 10:01
gcc-12-base CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
git CVE-2018-1000021 低危 1:2.39.5-0+deb12u3 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-02-09 23:29 修改: 2026-06-17 01:32
jq CVE-2024-23337 低危 1.6-2.1+deb12u1 jq: jq has signed integer overflow in jv.c:jvp_array_write

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23337

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-05-21 15:16 修改: 2026-06-17 07:12
jq CVE-2025-9403 低危 1.6-2.1+deb12u1 jq: assertion failure in run_jq_tests() of the file jq_test.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9403

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-08-25 03:15 修改: 2026-06-17 10:08
perl CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
libcurl3-gnutls CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24
libjq1 CVE-2024-23337 低危 1.6-2.1+deb12u1 jq: jq has signed integer overflow in jv.c:jvp_array_write

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23337

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-05-21 15:16 修改: 2026-06-17 07:12
libjq1 CVE-2025-9403 低危 1.6-2.1+deb12u1 jq: assertion failure in run_jq_tests() of the file jq_test.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9403

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-08-25 03:15 修改: 2026-06-17 10:08
libjq1 CVE-2026-40612 低危 1.6-2.1+deb12u1 jq: stack overflow via unbounded recursion in jv_contains

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40612

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:45
libk5crypto3 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
libk5crypto3 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libk5crypto3 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libk5crypto3 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
libkrb5-3 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
libkrb5-3 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
perl-base CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl-base CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
libkrb5-3 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libkrb5-3 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
libkrb5support0 CVE-2018-5709 低危 1.20.1-2+deb12u5 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
libkrb5support0 CVE-2024-26458 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libkrb5support0 CVE-2024-26461 低危 1.20.1-2+deb12u5 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
libkrb5support0 CVE-2026-11850 低危 1.20.1-2+deb12u5 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
libcurl3-gnutls CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27
libldap-2.5-0 CVE-2015-3276 低危 2.5.13+dfsg-5 openldap: incorrect multi-keyword mode cipherstring parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
libldap-2.5-0 CVE-2017-14159 低危 2.5.13+dfsg-5 openldap: Privilege escalation via PID file manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-09-05 18:29 修改: 2026-06-17 01:05
libldap-2.5-0 CVE-2017-17740 低危 2.5.13+dfsg-5 openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-12-18 06:29 修改: 2026-06-17 01:11
perl-modules-5.36 CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl-modules-5.36 CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
libldap-2.5-0 CVE-2020-15719 低危 2.5.13+dfsg-5 openldap: Certificate validation incorrectly matches name against CN-ID

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2020-07-14 14:15 修改: 2026-06-17 02:57
sysvinit-utils TEMP-0517018-A83CE6 低危 3.06-4 [sysvinit: no-root option in expert installer exposes locally exploitable security flaw]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libldap-2.5-0 CVE-2026-22185 低危 2.5.13+dfsg-5 OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-07 21:16 修改: 2026-06-17 10:19
tar CVE-2005-2541 低危 1.34+dfsg-1.2+deb12u1 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
tar TEMP-0290435-0B57B5 低危 1.34+dfsg-1.2+deb12u1 [tar's rmt command may have undesired side effects]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libllvm15 CVE-2023-26924 低危 1:15.0.6-4+b1 llvm: mlir:: outlineSingleBlockRegion crashes with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-27 22:15 修改: 2026-06-17 05:43
libllvm15 CVE-2023-29932 低危 1:15.0.6-4+b1 llvm: canonicalize pass crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29932

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
util-linux CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
util-linux CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libllvm15 CVE-2023-29933 低危 1:15.0.6-4+b1 llvm: one shot bufferize crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29933

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
libllvm15 CVE-2023-29934 低危 1:15.0.6-4+b1 llvm: convert-scf-to-spirv Pass crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29934

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
util-linux-extra CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
util-linux-extra CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libllvm15 CVE-2023-29935 低危 1:15.0.6-4+b1 llvm: gpu-to-llvm Pass crashed with error message

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29935

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
libllvm15 CVE-2023-29939 低危 1:15.0.6-4+b1 llvm-project commit a0138390 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29939

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
libllvm15 CVE-2023-29941 低危 1:15.0.6-4+b1 llvm: sparse-buffer-rewrite pass crashes with Segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29941

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
libllvm15 CVE-2023-29942 低危 1:15.0.6-4+b1 llvm: convert-spirv-to-llvm Pass trigger Segmentation fault in LLVMStructType verifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29942

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-05 15:15 修改: 2026-06-17 05:51
libllvm15 CVE-2024-31852 低危 1:15.0.6-4+b1 llvm: LR register can be overwritten without data being saved to the stack on ARM

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31852

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-04-05 15:15 修改: 2026-06-17 07:28
libllvm15 CVE-2024-7883 低危 1:15.0.6-4+b1 clang: CMSE secure state may leak from stack to floating-point registers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7883

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-10-31 17:15 修改: 2026-06-17 08:21
libcurl3-gnutls CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27
libcurl3-gnutls CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29
libcurl3-gnutls CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35
libcurl3-gnutls CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
libcurl3-gnutls CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
libcurl3-gnutls CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
libcurl3-gnutls CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
jq CVE-2026-40612 低危 1.6-2.1+deb12u1 jq: stack overflow via unbounded recursion in jv_contains

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40612

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-11 18:16 修改: 2026-06-17 10:45
libapt-pkg6.0 CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
git CVE-2022-24975 低危 1:2.39.5-0+deb12u3 git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2022-02-11 20:15 修改: 2026-06-17 04:32
libasound2 CVE-2026-56109 低危 1.2.8-1+b1 The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56109

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-22 18:16 修改: 2026-06-23 15:42
git CVE-2024-52005 低危 1:2.39.5-0+deb12u3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
libasound2-data CVE-2026-56109 低危 1.2.8-1 The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56109

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-22 18:16 修改: 2026-06-23 15:42
libmount1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
libmount1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
git-man CVE-2018-1000021 低危 1:2.39.5-0+deb12u3 git: client prints server-sent ANSI escape codes to the terminal, allowing for unverified messages to potentially execute arbitrary commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000021

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2018-02-09 23:29 修改: 2026-06-17 01:32
git-man CVE-2022-24975 低危 1:2.39.5-0+deb12u3 git: The --mirror option for git leaks secret for deleted content, aka the "GitBleed"

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24975

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2022-02-11 20:15 修改: 2026-06-17 04:32
vim CVE-2008-4677 低危 2:9.0.1378-2+deb12u2 vim: netrw plugin: FTP username and password disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4677

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2008-10-22 18:00 修改: 2026-04-23 00:35
vim CVE-2017-1000382 低危 2:9.0.1378-2+deb12u2 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-10-31 20:29 修改: 2026-06-17 00:59
vim CVE-2023-1264 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-07 22:15 修改: 2026-06-17 05:27
vim CVE-2023-1355 低危 2:9.0.1378-2+deb12u2 vim: null pointer dereference in class_object_index at vim9class.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1355

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-11 22:15 修改: 2026-06-17 05:27
vim CVE-2023-2609 低危 2:9.0.1378-2+deb12u2 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-09 18:15 修改: 2026-06-23 18:17
vim CVE-2023-3896 低危 2:9.0.1378-2+deb12u2 vim: Divide by zero in scroll_cursor_bot

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3896

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-08-07 13:15 修改: 2026-06-17 06:15
vim CVE-2023-46246 低危 2:9.0.1378-2+deb12u2 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-27 19:15 修改: 2026-06-23 18:17
vim CVE-2023-4733 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim CVE-2023-4734 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim CVE-2023-4735 低危 2:9.0.1378-2+deb12u2 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim CVE-2023-4750 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim CVE-2023-4751 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-03 19:15 修改: 2026-06-17 06:38
vim CVE-2023-48231 低危 2:9.0.1378-2+deb12u2 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48232 低危 2:9.0.1378-2+deb12u2 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48233 低危 2:9.0.1378-2+deb12u2 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48234 低危 2:9.0.1378-2+deb12u2 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48235 低危 2:9.0.1378-2+deb12u2 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48236 低危 2:9.0.1378-2+deb12u2 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48237 低危 2:9.0.1378-2+deb12u2 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim CVE-2023-48706 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-22 22:15 修改: 2026-06-23 18:17
vim CVE-2023-5441 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-05 21:15 修改: 2026-06-17 06:48
vim CVE-2023-5535 低危 2:9.0.1378-2+deb12u2 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-11 20:15 修改: 2026-06-17 06:48
vim CVE-2024-41957 低危 2:9.0.1378-2+deb12u2 vim: Double-free/use-after-free vulnerability with Vim editor

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41957

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim CVE-2024-41965 低危 2:9.0.1378-2+deb12u2 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim CVE-2024-43374 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-16 02:15 修改: 2026-06-17 07:50
vim CVE-2024-43790 低危 2:9.0.1378-2+deb12u2 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-22 22:15 修改: 2026-06-17 07:51
vim CVE-2025-1215 低危 2:9.0.1378-2+deb12u2 vim: vim main.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1215

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-12 19:15 修改: 2026-06-17 08:38
vim CVE-2025-22134 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow with visual mode in Vim < 9.1.1003

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22134

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-13 21:15 修改: 2026-06-17 08:45
vim CVE-2025-24014 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in win_line() in Vim < 9.1.1043

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24014

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-20 23:15 修改: 2026-06-17 08:57
vim CVE-2025-26603 低危 2:9.0.1378-2+deb12u2 vim: heap-use-after-free in function str_to_reg in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26603

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-18 19:15 修改: 2026-06-17 09:02
vim CVE-2026-28419 低危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via malformed tags file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28419

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-28422 低危 2:9.0.1378-2+deb12u2 vim: Vim: Integrity impact due to stack-buffer-overflow via wide terminal statusline rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28422

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim CVE-2026-52859 低危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via out-of-bounds write in terminal handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52859

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
libncurses6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
libblkid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
libblkid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libncursesw6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
libcurl4 CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-03-27 08:15 修改: 2026-06-17 07:24
libcurl4 CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:27
libcurl4 CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27
libcurl4 CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-07 08:15 修改: 2026-06-17 08:29
libcurl4 CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35
libcurl4 CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
libnss3 CVE-2017-11695 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in alloc_segs

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11695

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
libnss3 CVE-2017-11696 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in __hash_open

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11696

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
libnss3 CVE-2017-11697 低危 2:3.87.1-1+deb12u2 nss: Floating Point Exception in __hash_open

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11697

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
libnss3 CVE-2017-11698 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in __get_page

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11698

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
libcurl4 CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36
libcurl4 CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
libcurl4 CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37
libbpf1 CVE-2025-29481 低危 1:1.1.2-0+deb12u1 libbpf: Heap Buffer Overflow in libbpf

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05
libelf1 CVE-2024-25260 低危 0.188-2.1 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-02-20 18:15 修改: 2026-06-17 07:15
libelf1 CVE-2025-1352 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
libelf1 CVE-2025-1365 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-17 00:15 修改: 2026-06-17 08:38
libelf1 CVE-2025-1371 低危 0.188-2.1 elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
libelf1 CVE-2025-1372 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
vim-common CVE-2008-4677 低危 2:9.0.1378-2+deb12u2 vim: netrw plugin: FTP username and password disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4677

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2008-10-22 18:00 修改: 2026-04-23 00:35
vim-common CVE-2017-1000382 低危 2:9.0.1378-2+deb12u2 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-10-31 20:29 修改: 2026-06-17 00:59
vim-common CVE-2023-1264 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-07 22:15 修改: 2026-06-17 05:27
vim-common CVE-2023-1355 低危 2:9.0.1378-2+deb12u2 vim: null pointer dereference in class_object_index at vim9class.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1355

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-11 22:15 修改: 2026-06-17 05:27
vim-common CVE-2023-2609 低危 2:9.0.1378-2+deb12u2 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-09 18:15 修改: 2026-06-23 18:17
vim-common CVE-2023-3896 低危 2:9.0.1378-2+deb12u2 vim: Divide by zero in scroll_cursor_bot

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3896

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-08-07 13:15 修改: 2026-06-17 06:15
vim-common CVE-2023-46246 低危 2:9.0.1378-2+deb12u2 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-27 19:15 修改: 2026-06-23 18:17
vim-common CVE-2023-4733 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim-common CVE-2023-4734 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim-common CVE-2023-4735 低危 2:9.0.1378-2+deb12u2 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim-common CVE-2023-4750 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim-common CVE-2023-4751 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-03 19:15 修改: 2026-06-17 06:38
vim-common CVE-2023-48231 低危 2:9.0.1378-2+deb12u2 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48232 低危 2:9.0.1378-2+deb12u2 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48233 低危 2:9.0.1378-2+deb12u2 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48234 低危 2:9.0.1378-2+deb12u2 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48235 低危 2:9.0.1378-2+deb12u2 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48236 低危 2:9.0.1378-2+deb12u2 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48237 低危 2:9.0.1378-2+deb12u2 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-common CVE-2023-48706 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-22 22:15 修改: 2026-06-23 18:17
vim-common CVE-2023-5441 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-05 21:15 修改: 2026-06-17 06:48
vim-common CVE-2023-5535 低危 2:9.0.1378-2+deb12u2 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-11 20:15 修改: 2026-06-17 06:48
vim-common CVE-2024-41957 低危 2:9.0.1378-2+deb12u2 vim: Double-free/use-after-free vulnerability with Vim editor

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41957

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim-common CVE-2024-41965 低危 2:9.0.1378-2+deb12u2 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim-common CVE-2024-43374 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-16 02:15 修改: 2026-06-17 07:50
vim-common CVE-2024-43790 低危 2:9.0.1378-2+deb12u2 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-22 22:15 修改: 2026-06-17 07:51
vim-common CVE-2025-1215 低危 2:9.0.1378-2+deb12u2 vim: vim main.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1215

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-12 19:15 修改: 2026-06-17 08:38
vim-common CVE-2025-22134 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow with visual mode in Vim < 9.1.1003

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22134

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-13 21:15 修改: 2026-06-17 08:45
vim-common CVE-2025-24014 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in win_line() in Vim < 9.1.1043

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24014

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-20 23:15 修改: 2026-06-17 08:57
vim-common CVE-2025-26603 低危 2:9.0.1378-2+deb12u2 vim: heap-use-after-free in function str_to_reg in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26603

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-18 19:15 修改: 2026-06-17 09:02
vim-common CVE-2026-28419 低危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via malformed tags file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28419

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-28422 低危 2:9.0.1378-2+deb12u2 vim: Vim: Integrity impact due to stack-buffer-overflow via wide terminal statusline rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28422

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-common CVE-2026-52859 低危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via out-of-bounds write in terminal handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52859

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
libelf1 CVE-2025-1376 低危 0.188-2.1 elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
libelf1 CVE-2025-1377 低危 0.188-2.1 elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
git-man CVE-2024-52005 低危 1:2.39.5-0+deb12u3 git: The sideband payload is passed unfiltered to the terminal in git

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
coreutils CVE-2016-2781 低危 9.1-1 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2017-02-07 15:59 修改: 2026-06-17 00:44
coreutils CVE-2017-18018 低危 9.1-1 coreutils: race condition vulnerability in chown and chgrp

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2018-01-04 04:29 修改: 2026-06-17 01:12
gpg CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59
coreutils CVE-2025-5278 低危 9.1-1 coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-05-27 21:15 修改: 2026-06-24 10:17
apt CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
gpgconf CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59
libperl5.36 CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
libperl5.36 CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
libpixman-1-0 CVE-2023-37769 低危 0.42.2-1 stress-test master commit e4c878 was discovered to contain a FPE vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08
libpng16-16 CVE-2021-4214 低危 1.6.39-2+deb12u5 libpng: hardcoded value leads to heap-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2022-08-24 16:15 修改: 2026-06-17 04:19
libpng16-16 CVE-2025-28162 低危 1.6.39-2+deb12u5 libpng: libpng: Denial of Service via buffer overflow in pngimage utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28162

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
libpng16-16 CVE-2025-28164 低危 1.6.39-2+deb12u5 libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
libpng16-16 CVE-2026-3713 低危 1.6.39-2+deb12u5 libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-08 06:16 修改: 2026-06-17 10:44
bash TEMP-0841856-B18BAF 低危 5.2.15-2+b10 [Privilege escalation possible to other user than root]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libc-bin CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libsmartcols1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
libsmartcols1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2025-12-05 17:16 修改: 2026-06-17 08:35
libc-bin CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
libc-bin CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc-bin CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
vim-runtime CVE-2008-4677 低危 2:9.0.1378-2+deb12u2 vim: netrw plugin: FTP username and password disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-4677

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2008-10-22 18:00 修改: 2026-04-23 00:35
vim-runtime CVE-2017-1000382 低危 2:9.0.1378-2+deb12u2 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2017-10-31 20:29 修改: 2026-06-17 00:59
vim-runtime CVE-2023-1264 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-07 22:15 修改: 2026-06-17 05:27
vim-runtime CVE-2023-1355 低危 2:9.0.1378-2+deb12u2 vim: null pointer dereference in class_object_index at vim9class.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1355

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-03-11 22:15 修改: 2026-06-17 05:27
vim-runtime CVE-2023-2609 低危 2:9.0.1378-2+deb12u2 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-05-09 18:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-3896 低危 2:9.0.1378-2+deb12u2 vim: Divide by zero in scroll_cursor_bot

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3896

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-08-07 13:15 修改: 2026-06-17 06:15
vim-runtime CVE-2023-46246 低危 2:9.0.1378-2+deb12u2 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-27 19:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-4733 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function buflist_altfpos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4733

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-4734 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in function f_fullcommand in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4734

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-4735 低危 2:9.0.1378-2+deb12u2 vim: OOB Write ops.c in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4735

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-02 18:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-4750 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in function bt_quickfix

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4750

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-04 14:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-4751 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow in function utfc_ptr2len in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4751

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-09-03 19:15 修改: 2026-06-17 06:38
vim-runtime CVE-2023-48231 低危 2:9.0.1378-2+deb12u2 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48232 低危 2:9.0.1378-2+deb12u2 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48233 低危 2:9.0.1378-2+deb12u2 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48234 低危 2:9.0.1378-2+deb12u2 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48235 低危 2:9.0.1378-2+deb12u2 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48236 低危 2:9.0.1378-2+deb12u2 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48237 低危 2:9.0.1378-2+deb12u2 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-16 23:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-48706 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-11-22 22:15 修改: 2026-06-23 18:17
vim-runtime CVE-2023-5441 低危 2:9.0.1378-2+deb12u2 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-05 21:15 修改: 2026-06-17 06:48
vim-runtime CVE-2023-5535 低危 2:9.0.1378-2+deb12u2 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2023-10-11 20:15 修改: 2026-06-17 06:48
vim-runtime CVE-2024-41957 低危 2:9.0.1378-2+deb12u2 vim: Double-free/use-after-free vulnerability with Vim editor

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41957

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim-runtime CVE-2024-41965 低危 2:9.0.1378-2+deb12u2 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-01 22:15 修改: 2026-06-17 07:48
vim-runtime CVE-2024-43374 低危 2:9.0.1378-2+deb12u2 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-16 02:15 修改: 2026-06-17 07:50
vim-runtime CVE-2024-43790 低危 2:9.0.1378-2+deb12u2 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2024-08-22 22:15 修改: 2026-06-17 07:51
vim-runtime CVE-2025-1215 低危 2:9.0.1378-2+deb12u2 vim: vim main.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1215

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-12 19:15 修改: 2026-06-17 08:38
vim-runtime CVE-2025-22134 低危 2:9.0.1378-2+deb12u2 vim: heap-buffer-overflow with visual mode in Vim < 9.1.1003

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22134

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-13 21:15 修改: 2026-06-17 08:45
vim-runtime CVE-2025-24014 低危 2:9.0.1378-2+deb12u2 vim: segmentation fault in win_line() in Vim < 9.1.1043

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24014

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-01-20 23:15 修改: 2026-06-17 08:57
vim-runtime CVE-2025-26603 低危 2:9.0.1378-2+deb12u2 vim: heap-use-after-free in function str_to_reg in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26603

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-02-18 19:15 修改: 2026-06-17 09:02
vim-runtime CVE-2026-28419 低危 2:9.0.1378-2+deb12u2 vim: Vim: Information disclosure and denial of service via malformed tags file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28419

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-28422 低危 2:9.0.1378-2+deb12u2 vim: Vim: Integrity impact due to stack-buffer-overflow via wide terminal statusline rendering

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28422

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-27 22:16 修改: 2026-06-17 10:28
vim-runtime CVE-2026-52859 低危 2:9.0.1378-2+deb12u2 vim: Vim: Denial of Service via out-of-bounds write in terminal handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-52859

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-11 19:16 修改: 2026-06-17 10:57
libc-bin CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
libc-bin CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
xdg-utils CVE-2025-52968 低危 1.1.3-4.1 xdg-utils: xdg-open bypassing SameSite=Strict

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52968

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-06-23 15:15 修改: 2026-06-17 09:37
libc-bin CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
libc-bin CVE-2025-15281 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
curl CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libjq1 CVE-2026-47770 未知 1.6-2.1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47770

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-9547 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils CVE-2026-53613 未知 1:2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-10536 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmount1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmount1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-11856 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-10536 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-11856 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsmartcols1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsmartcols1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mount CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mount CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56131 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
libexpat1 CVE-2026-56407 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28
libexpat1 CVE-2026-56408 未知 2.5.0-1+deb12u2 libexpat before 2.8.2 has an integer overflow in copyString.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27
libexpat1 CVE-2026-56409 未知 2.5.0-1+deb12u2 xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21
libcurl4 CVE-2026-12064 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-8286 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-8458 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-8924 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-8927 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 CVE-2026-9547 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-12064 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-8286 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssh2-1 CVE-2025-15661 未知 1.10.0-3+b1 libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15661

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-18 21:16 修改: 2026-06-22 19:16
libcurl3-gnutls CVE-2026-8458 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-8924 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-8927 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-8932 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8932

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2026-9547 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux-extra CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux-extra CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpg CVE-2026-57062 未知 2.2.40-1.1+deb12u2 CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-23 18:18 修改: 2026-06-23 18:18
bsdutils CVE-2026-53615 未知 1:2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-10536 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-11856 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpgconf CVE-2026-57062 未知 2.2.40-1.1+deb12u2 CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-23 18:18 修改: 2026-06-23 18:18
curl CVE-2026-12064 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libblkid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libblkid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-8286 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-8458 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpgv CVE-2026-57062 未知 2.2.40-1.1+deb12u2 CMS (Cryptographic Message Syntax) parsing in gpgsm in GnuPG through 2 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a

发布日期: 2026-06-23 18:18 修改: 2026-06-23 18:18
curl CVE-2026-8924 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-8927 未知 7.88.1-10+deb12u14

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
jq CVE-2026-47770 未知 1.6-2.1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47770

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
Node.js (node-pkg)
低危漏洞:6 中危漏洞:34 高危漏洞:38 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
loader-utils CVE-2022-37601 严重 0.2.17 2.0.3, 1.4.1 loader-utils: prototype pollution in function parseQuery in parseQuery.js

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37601

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-10-12 20:15 修改: 2026-06-17 04:55
shell-quote CVE-2026-9277 严重 1.8.1 1.8.4 shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9277

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-22 14:16 修改: 2026-06-17 11:05
flatted CVE-2026-33228 高危 3.3.3 3.4.2 flatted: Flatted: Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33228

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-20 23:16 修改: 2026-06-17 10:37
form-data CVE-2026-12143 高危 4.0.5 2.5.6, 3.0.5, 4.0.6 form-data is a library for creating readable multipart/form-data strea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-12 19:16 修改: 2026-06-17 10:14
glob CVE-2025-64756 高危 10.4.5 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55
glob CVE-2025-64756 高危 11.0.3 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55
immutable CVE-2026-29063 高危 4.3.4 4.3.8, 5.1.5, 3.8.3 immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29063

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-06 19:16 修改: 2026-06-17 10:29
json5 CVE-2022-46175 高危 0.5.1 2.2.2, 1.0.2 json5: Prototype Pollution in JSON5 via Parse Method

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-12-24 04:15 修改: 2026-06-17 05:11
launch-editor CVE-2024-52011 高危 2.6.1 2.9.0 launch-editor: vite: launch-editor: Arbitrary command execution via insufficient file argument sanitization

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52011

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-01 19:16 修改: 2026-06-17 08:06
@isaacs/brace-expansion CVE-2026-25547 高危 5.0.0 5.0.1 brace-expansion: brace-expansion: Denial of Service via unbounded brace range expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25547

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-04 22:16 修改: 2026-06-17 10:24
lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:57
lodash-es CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:57
minimatch CVE-2026-26996 高危 10.0.3 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26
minimatch CVE-2026-27903 高危 10.0.3 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-27904 高危 10.0.3 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26
minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-26996 高危 9.0.5 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26
minimatch CVE-2026-26996 高危 9.0.5 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26
minimatch CVE-2026-27903 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-27903 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-27904 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
minimatch CVE-2026-27904 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27
picomatch CVE-2026-33671 高危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37
picomatch CVE-2026-33671 高危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37
flatted CVE-2026-32141 高危 3.3.3 3.4.0 flatted: flatted: Unbounded recursion DoS in parse() revive phase

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32141

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-12 18:16 修改: 2026-06-17 10:35
socket.io-parser CVE-2026-33151 高危 4.2.4 3.3.5, 3.4.4, 4.2.6 socket.io: Socket.IO: Denial of Service due to excessive buffering of specially crafted packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33151

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-20 21:17 修改: 2026-06-17 10:37
socket.io-parser CVE-2026-33151 高危 4.2.5 3.3.5, 3.4.4, 4.2.6 socket.io: Socket.IO: Denial of Service due to excessive buffering of specially crafted packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33151

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-20 21:17 修改: 2026-06-17 10:37
svgo CVE-2026-29074 高危 2.8.0 2.8.1, 3.3.3, 4.0.1 svgo: SVGO: Denial of Service via XML entity expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29074

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-06 08:16 修改: 2026-06-17 10:29
tar CVE-2026-23745 高危 7.5.1 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-16 22:16 修改: 2026-06-17 10:22
tar CVE-2026-23950 高危 7.5.1 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-20 01:15 修改: 2026-06-17 10:22
tar CVE-2026-24842 高危 7.5.1 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-28 01:16 修改: 2026-06-17 10:23
tar CVE-2026-26960 高危 7.5.1 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26
tar CVE-2026-29786 高危 7.5.1 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-07 16:15 修改: 2026-06-17 10:29
tar CVE-2026-31802 高危 7.5.1 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34
tmp CVE-2026-44705 高危 0.2.4 0.2.6 tmp is a temporary file and directory creator for node.js. Prior to 0. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44705

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-11 17:16 修改: 2026-06-17 10:51
ws CVE-2024-37890 高危 8.11.0 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38
ws CVE-2026-48779 高危 8.11.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-17 13:20 修改: 2026-06-18 15:25
ws CVE-2026-48779 高危 8.17.1 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-17 13:20 修改: 2026-06-18 15:25
picomatch CVE-2026-33672 中危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37
postcss CVE-2021-23382 中危 5.2.18 8.2.13, 7.0.36 nodejs-postcss: ReDoS via getAnnotationURL() and loadAnnotation() in lib/previous-map.js

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23382

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2021-04-26 16:15 修改: 2026-06-17 03:38
postcss CVE-2023-44270 中危 5.2.18 8.4.31 PostCSS: Improper input validation in PostCSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-29 22:15 修改: 2026-06-17 06:27
postcss CVE-2026-41305 中危 5.2.18 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46
postcss CVE-2021-23382 中危 6.0.23 8.2.13, 7.0.36 nodejs-postcss: ReDoS via getAnnotationURL() and loadAnnotation() in lib/previous-map.js

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23382

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2021-04-26 16:15 修改: 2026-06-17 03:38
postcss CVE-2021-23382 中危 6.0.23 8.2.13, 7.0.36 nodejs-postcss: ReDoS via getAnnotationURL() and loadAnnotation() in lib/previous-map.js

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23382

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2021-04-26 16:15 修改: 2026-06-17 03:38
postcss CVE-2023-44270 中危 6.0.23 8.4.31 PostCSS: Improper input validation in PostCSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-29 22:15 修改: 2026-06-17 06:27
postcss CVE-2023-44270 中危 6.0.23 8.4.31 PostCSS: Improper input validation in PostCSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-29 22:15 修改: 2026-06-17 06:27
postcss CVE-2026-41305 中危 6.0.23 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46
postcss CVE-2026-41305 中危 6.0.23 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46
postcss CVE-2023-44270 中危 7.0.39 8.4.31 PostCSS: Improper input validation in PostCSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44270

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-29 22:15 修改: 2026-06-17 06:27
postcss CVE-2026-41305 中危 7.0.39 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46
postcss CVE-2026-41305 中危 8.4.31 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46
quill CVE-2021-3163 中危 1.3.7 Cross-site Scripting in quill

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3163

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2021-04-12 21:15 修改: 2026-06-17 04:04
ip-address CVE-2026-42338 中危 10.0.1 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-05-12 20:16 修改: 2026-06-17 10:47
showdown CVE-2024-1899 中危 2.1.0 Showdown vulnerable to Regular Expression Denial of Service (ReDoS) in link/anchor parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1899

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-02-26 19:15 修改: 2026-06-17 07:05
js-yaml CVE-2026-53550 中危 4.1.1 4.2.0 js-yaml is a JavaScript YAML parser and dumper. Prior to 4.2.0, a craf ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 16:16 修改: 2026-06-23 17:17
brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38
brace-expansion CVE-2026-33750 中危 1.1.12 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38
launch-editor CVE-2026-53632 中危 2.6.1 2.14.1 launch-editor: NTLMv2 hash disclosure via UNC path handling on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53632

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 18:16 修改: 2026-06-23 15:44
brace-expansion CVE-2026-33750 中危 2.0.2 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38
brace-expansion CVE-2026-33750 中危 5.0.3 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38
lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:34
lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32
brace-expansion CVE-2026-45149 中危 5.0.3 5.0.6 brace-expansion: brace-expansion: Denial of Service due to excessive memory allocation when expanding large numeric ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45149

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-29 20:16 修改: 2026-06-17 10:51
tar CVE-2025-64118 中危 7.5.1 7.5.2 node-tar: tar: node-tar: Information disclosure via reading a truncated tar file

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64118

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2025-10-30 18:15 修改: 2026-06-17 09:53
tar CVE-2026-53655 中危 7.5.1 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-06-22 16:16 修改: 2026-06-23 15:50
lodash-es CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:34
lodash-es CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32
picomatch CVE-2026-33672 中危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37
ws CVE-2026-45736 中危 8.11.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:52
esbuild GHSA-67mh-4wv8-2f99 中危 0.14.54 0.25.0 esbuild enables any website to send any requests to the development server and read the response

漏洞详情: https://github.com/advisories/GHSA-67mh-4wv8-2f99

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-02-10 17:48 修改: 2025-02-10 17:48
ws CVE-2026-45736 中危 8.17.1 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-15 15:16 修改: 2026-06-17 10:52
yaml CVE-2026-33532 中危 1.10.2 2.8.3, 1.10.3 yaml: yaml: Denial of Service via deeply nested YAML document parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33532

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-26 20:16 修改: 2026-06-17 10:37
cookie CVE-2024-47764 低危 0.4.2 0.7.0 cookie: cookie accepts cookie name, path, and domain with out of bounds characters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-10-04 20:15 修改: 2026-06-17 07:57
diff CVE-2026-24001 低危 8.0.2 8.0.3, 5.2.2, 4.0.4, 3.5.1 jsdiff: denial of service vulnerability in parsePatch and applyPatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001

镜像层: sha256:82691524074d7b18dc9a0d1c3ad69c26ef42355ca31dddc95d852821a508b6ad

发布日期: 2026-01-22 03:15 修改: 2026-06-17 10:22
quill CVE-2025-15056 低危 2.0.3 Quill is vulnerable to XSS via HTML export feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15056

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-13 21:15 修改: 2026-06-17 08:37
react-router CVE-2026-53663 低危 7.15.0 7.15.1 react-router: @remix-run/server-runtime: React Router: Insufficient CSRF protection allows integrity impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53663

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 19:17 修改: 2026-06-23 16:04
@babel/core CVE-2026-49356 低危 7.29.0 8.0.0-rc.6, 7.29.6 @babel/core: Arbitrary File Read via sourceMappingURL Comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 18:16 修改: 2026-06-23 16:04
brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48
Python (python-pkg)
低危漏洞:2 中危漏洞:10 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cryptography GHSA-537c-gmf6-5ccf 高危 46.0.7 48.0.1 Vulnerable OpenSSL included in cryptography wheels

漏洞详情: https://github.com/advisories/GHSA-537c-gmf6-5ccf

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-15 20:12 修改: 2026-06-15 20:12
pdfkit CVE-2025-26240 高危 1.0.0 In JazzCore python-pdfkit 1.0.0, the from_string method enables the ex ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-26240

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-17 17:16 修改: 2026-06-22 20:42
bleach GHSA-g75f-g53v-794x 中危 6.3.0 Bleach linkify(parse_email=True) CPU exhaustion via unbounded email regex scanning

漏洞详情: https://github.com/advisories/GHSA-g75f-g53v-794x

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-16 14:07 修改: 2026-06-16 14:07
bleach GHSA-gj48-438w-jh9v 中危 6.3.0 6.4.0 Bleach clean() / Cleaner() fails to sanitize dangerous URI schemes in allowed formaction attributes

漏洞详情: https://github.com/advisories/GHSA-gj48-438w-jh9v

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-16 14:07 修改: 2026-06-16 14:07
pip CVE-2026-3219 中危 25.3 26.1 pip: pip: Incorrect file installation due to improper archive handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3219

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-04-20 16:16 修改: 2026-06-17 10:43
pip CVE-2026-6357 中危 25.3 26.1 pip: pip: Arbitrary code execution or information disclosure via malicious wheel package installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6357

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-04-27 15:16 修改: 2026-06-17 11:00
pypdf CVE-2026-48735 中危 6.12.0 6.12.1 pypdf: pypdf: Denial of Service via crafted PDF with large XMP metadata

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48735

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-28 16:16 修改: 2026-06-17 10:55
pypdf CVE-2026-49460 中危 6.12.0 6.12.2 pypdf is a free and open-source pure-python PDF library. Prior to 6.12 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49460

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 21:16 修改: 2026-06-23 15:16
pypdf CVE-2026-49461 中危 6.12.0 6.12.2 pypdf: pypdf: Denial of Service via crafted PDF with self-referencing form XObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49461

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 21:16 修改: 2026-06-23 15:03
pypdf CVE-2026-54530 中危 6.12.0 6.13.0 pypdf is a free and open-source pure-python PDF library. Prior to 6.13 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54530

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 21:16 修改: 2026-06-23 16:17
pypdf CVE-2026-54531 中危 6.12.0 6.13.0 pypdf is a free and open-source pure-python PDF library. Prior to 6.13 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54531

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-22 21:16 修改: 2026-06-23 15:16
pypdf GHSA-jm82-fx9c-mx94 中危 6.12.0 6.13.3 pypdf: Missing stream length values ignore defined limits

漏洞详情: https://github.com/advisories/GHSA-jm82-fx9c-mx94

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-18 14:28 修改: 2026-06-18 14:28
bleach GHSA-8rfp-98v4-mmr6 低危 6.3.0 6.4.0 Bleach: URI sanitization allows disallowed URI schemes with Unicode > U+00A0 in output

漏洞详情: https://github.com/advisories/GHSA-8rfp-98v4-mmr6

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-16 14:06 修改: 2026-06-16 14:06
pip CVE-2026-1703 低危 25.3 26.0 pip: pip: Information disclosure via path traversal when installing crafted wheel archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1703

镜像层: sha256:27b6f25ee5bbbdc95260739e2fe7567a9c5894fb15081efe6bb20f621cd71d33

发布日期: 2026-02-02 15:16 修改: 2026-06-17 10:16
home/frappe/frappe-bench/apps/frappe/node_modules/esbuild-linux-64/bin/esbuild (gobinary)
低危漏洞:3 中危漏洞:44 高危漏洞:37 严重漏洞:4
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2023-24538 严重 v1.19 1.19.8, 1.20.3 golang: html/template: backticks not treated as string delimiters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-04-06 16:15 修改: 2026-06-17 05:39
stdlib CVE-2023-24540 严重 v1.19 1.19.9, 1.20.4 golang: html/template: improper handling of JavaScript whitespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-05-11 16:15 修改: 2026-06-17 05:39
stdlib CVE-2024-24790 严重 v1.19 1.21.11, 1.22.4 golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-06-05 16:15 修改: 2026-06-17 07:14
stdlib CVE-2025-68121 严重 v1.19 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-02-05 18:16 修改: 2026-06-17 09:58
stdlib CVE-2022-27664 高危 v1.19 1.18.6, 1.19.1 golang: net/http: handle server errors after sending GOAWAY

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27664

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-09-06 18:15 修改: 2026-06-17 04:37
stdlib CVE-2022-2879 高危 v1.19 1.18.7, 1.19.2 golang: archive/tar: github.com/vbatts/tar-split: unbounded memory consumption when reading headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2879

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-10-14 15:15 修改: 2026-06-17 04:42
stdlib CVE-2022-2880 高危 v1.19 1.18.7, 1.19.2 golang: net/http/httputil: ReverseProxy should not forward unparseable query parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2880

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-10-14 15:15 修改: 2026-06-17 04:42
stdlib CVE-2022-32190 高危 v1.19 1.19.1 golang: net/url: JoinPath does not strip relative path components in all circumstances

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32190

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-09-13 18:15 修改: 2026-06-17 04:46
stdlib CVE-2022-41715 高危 v1.19 1.18.7, 1.19.2 golang: regexp/syntax: limit memory used by parsing regexps

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41715

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-10-14 15:16 修改: 2026-06-17 05:03
stdlib CVE-2022-41716 高危 v1.19 1.18.8, 1.19.3 Due to unsanitized NUL values, attackers may be able to maliciously se ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41716

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-11-02 16:15 修改: 2026-06-17 05:03
stdlib CVE-2022-41720 高危 v1.19 1.18.9, 1.19.4 golang: os, net/http: avoid escapes from os.DirFS and http.Dir on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41720

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-12-07 17:15 修改: 2026-06-17 05:03
stdlib CVE-2022-41722 高危 v1.19 1.19.6, 1.20.1 golang: path/filepath: path-filepath filepath.Clean path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-02-28 18:15 修改: 2026-06-17 05:03
stdlib CVE-2022-41723 高危 v1.19 1.19.6, 1.20.1 golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-02-28 18:15 修改: 2026-06-17 05:03
stdlib CVE-2022-41724 高危 v1.19 1.19.6, 1.20.1 golang: crypto/tls: large handshake records may cause panics

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-02-28 18:15 修改: 2026-06-17 05:03
stdlib CVE-2022-41725 高危 v1.19 1.19.6, 1.20.1 golang: net/http, mime/multipart: denial of service from excessive resource consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-02-28 18:15 修改: 2026-06-17 05:03
stdlib CVE-2023-24534 高危 v1.19 1.19.8, 1.20.3 golang: net/http, net/textproto: denial of service from excessive memory allocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-04-06 16:15 修改: 2026-06-17 05:39
stdlib CVE-2023-24536 高危 v1.19 1.19.8, 1.20.3 golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-04-06 16:15 修改: 2026-06-17 05:39
stdlib CVE-2023-24537 高危 v1.19 1.19.8, 1.20.3 golang: go/parser: Infinite loop in parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-04-06 16:15 修改: 2026-06-17 05:39
stdlib CVE-2023-24539 高危 v1.19 1.19.9, 1.20.4 golang: html/template: improper sanitization of CSS values

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-05-11 16:15 修改: 2026-06-17 05:39
stdlib CVE-2023-29400 高危 v1.19 1.19.9, 1.20.4 golang: html/template: improper handling of empty HTML attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-05-11 16:15 修改: 2026-06-17 05:49
stdlib CVE-2023-29403 高危 v1.19 1.19.10, 1.20.5 golang: runtime: unexpected behavior of setuid/setgid binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-06-08 21:15 修改: 2026-06-17 05:49
stdlib CVE-2023-39325 高危 v1.19 1.20.10, 1.21.3 golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-10-11 22:15 修改: 2026-06-17 06:12
stdlib CVE-2023-45283 高危 v1.19 1.20.11, 1.21.4, 1.20.12, 1.21.5 The filepath package does not recognize paths with a \??\ prefix as sp ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-11-09 17:15 修改: 2026-06-17 06:28
stdlib CVE-2023-45287 高危 v1.19 1.20.0 golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges.

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-12-05 17:15 修改: 2026-06-17 06:28
stdlib CVE-2023-45288 高危 v1.19 1.21.9, 1.22.2 golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-04-04 21:15 修改: 2026-06-17 06:28
stdlib CVE-2024-34156 高危 v1.19 1.22.7, 1.23.1 encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-09-06 21:15 修改: 2026-06-17 07:33
stdlib CVE-2025-61726 高危 v1.19 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-28 20:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61729 高危 v1.19 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-12-02 19:15 修改: 2026-06-17 09:50
stdlib CVE-2026-25679 高危 v1.19 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-06 22:16 修改: 2026-06-17 10:25
stdlib CVE-2026-27145 高危 v1.19 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-02 23:16 修改: 2026-06-17 10:26
stdlib CVE-2026-32280 高危 v1.19 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-32281 高危 v1.19 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-32283 高危 v1.19 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-33811 高危 v1.19 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:38
stdlib CVE-2026-33814 高危 v1.19 1.25.10, 1.26.3 net/http/internal/http2: golang: golang.org/x/net: Go HTTP/2: Denial of Service via malformed SETTINGS_MAX_FRAME_SIZE frame

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:38
stdlib CVE-2026-39820 高危 v1.19 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:42
stdlib CVE-2026-39823 高危 v1.19 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:42
stdlib CVE-2026-39825 高危 v1.19 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:42
stdlib CVE-2026-39836 高危 v1.19 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:42
stdlib CVE-2026-42499 高危 v1.19 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:47
stdlib CVE-2026-42504 高危 v1.19 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-02 23:16 修改: 2026-06-17 10:47
stdlib CVE-2022-41717 中危 v1.19 1.18.9, 1.19.4 golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41717

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2022-12-08 20:15 修改: 2026-06-17 05:03
stdlib CVE-2023-24532 中危 v1.19 1.19.7, 1.20.2 golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-03-08 20:15 修改: 2026-06-17 05:39
stdlib CVE-2023-29406 中危 v1.19 1.19.11, 1.20.6 golang: net/http: insufficient sanitization of Host header

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-07-11 20:15 修改: 2026-06-17 05:49
stdlib CVE-2023-29409 中危 v1.19 1.19.12, 1.20.7, 1.21.0-rc.4 golang: crypto/tls: slow verification of certificate chains containing large RSA keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-08-02 20:15 修改: 2026-06-17 05:49
stdlib CVE-2023-39318 中危 v1.19 1.20.8, 1.21.1 golang: html/template: improper handling of HTML-like comments within script contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-08 17:15 修改: 2026-06-17 06:12
stdlib CVE-2023-39319 中危 v1.19 1.20.8, 1.21.1 golang: html/template: improper handling of special tags within script contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-09-08 17:15 修改: 2026-06-17 06:12
stdlib CVE-2023-39326 中危 v1.19 1.20.12, 1.21.5 golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-12-06 17:15 修改: 2026-06-17 06:12
stdlib CVE-2023-45284 中危 v1.19 1.20.11, 1.21.4 On Windows, The IsLocal function does not correctly detect reserved de ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2023-11-09 17:15 修改: 2026-06-17 06:28
stdlib CVE-2023-45289 中危 v1.19 1.21.8, 1.22.1 golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-03-05 23:15 修改: 2026-06-17 06:28
stdlib CVE-2023-45290 中危 v1.19 1.21.8, 1.22.1 golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-03-05 23:15 修改: 2026-06-17 06:28
stdlib CVE-2024-24783 中危 v1.19 1.21.8, 1.22.1 golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-03-05 23:15 修改: 2026-06-17 07:14
stdlib CVE-2024-24784 中危 v1.19 1.21.8, 1.22.1 golang: net/mail: comments in display names are incorrectly handled

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-03-05 23:15 修改: 2026-06-17 07:14
stdlib CVE-2024-24785 中危 v1.19 1.21.8, 1.22.1 golang: html/template: errors returned from MarshalJSON methods may break template escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-03-05 23:15 修改: 2026-06-17 07:14
stdlib CVE-2024-24789 中危 v1.19 1.21.11, 1.22.4 golang: archive/zip: Incorrect handling of certain ZIP files

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-06-05 16:15 修改: 2026-06-17 07:14
stdlib CVE-2024-24791 中危 v1.19 1.21.12, 1.22.5 net/http: Denial of service due to improper 100-continue handling in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-07-02 22:15 修改: 2026-06-17 07:14
stdlib CVE-2024-34155 中危 v1.19 1.22.7, 1.23.1 go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-09-06 21:15 修改: 2026-06-17 07:33
stdlib CVE-2024-34158 中危 v1.19 1.22.7, 1.23.1 go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2024-09-06 21:15 修改: 2026-06-17 07:33
stdlib CVE-2024-45336 中危 v1.19 1.22.11, 1.23.5, 1.24.0-rc.2 golang: net/http: net/http: sensitive headers incorrectly sent after cross-domain redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45336

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-01-28 02:15 修改: 2026-06-17 07:54
stdlib CVE-2025-0913 中危 v1.19 1.23.10, 1.24.4 Inconsistent handling of O_CREATE|O_EXCL on Unix and Windows in os in syscall

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0913

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-06-11 18:15 修改: 2026-06-17 08:27
stdlib CVE-2025-22866 中危 v1.19 1.22.12, 1.23.6, 1.24.0-rc.3 crypto/internal/nistec: golang: Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22866

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-02-06 17:15 修改: 2026-06-17 08:50
stdlib CVE-2025-22870 中危 v1.19 1.23.7, 1.24.1 golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22870

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-03-12 19:15 修改: 2026-06-17 08:50
stdlib CVE-2025-22871 中危 v1.19 1.23.8, 1.24.2 net/http: Request smuggling due to acceptance of invalid chunked data in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22871

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-04-08 20:15 修改: 2026-06-17 08:50
stdlib CVE-2025-22873 中危 v1.19 1.23.9, 1.24.3 os: os: Information disclosure via path traversal using specially crafted filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22873

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-02-04 23:15 修改: 2026-06-17 08:50
stdlib CVE-2025-4673 中危 v1.19 1.23.10, 1.24.4 net/http: Sensitive headers not cleared on cross-origin redirect in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4673

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-06-11 17:15 修改: 2026-06-17 09:33
stdlib CVE-2025-47906 中危 v1.19 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-09-18 19:15 修改: 2026-06-17 09:28
stdlib CVE-2025-47907 中危 v1.19 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-08-07 16:15 修改: 2026-06-17 09:28
stdlib CVE-2025-47912 中危 v1.19 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:28
stdlib CVE-2025-58183 中危 v1.19 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2025-58185 中危 v1.19 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2025-58187 中危 v1.19 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2025-58188 中危 v1.19 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2025-58189 中危 v1.19 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2025-61723 中危 v1.19 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61724 中危 v1.19 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61725 中危 v1.19 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61727 中危 v1.19 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-12-03 20:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61728 中危 v1.19 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-28 20:16 修改: 2026-06-17 09:50
stdlib CVE-2025-61730 中危 v1.19 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-01-28 20:16 修改: 2026-06-17 09:50
stdlib CVE-2026-27142 中危 v1.19 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-06 22:16 修改: 2026-06-17 10:26
stdlib CVE-2026-32282 中危 v1.19 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-32288 中危 v1.19 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-32289 中危 v1.19 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-04-08 02:16 修改: 2026-06-17 10:35
stdlib CVE-2026-39826 中危 v1.19 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-07 20:16 修改: 2026-06-17 10:42
stdlib CVE-2026-42507 中危 v1.19 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-06-02 23:16 修改: 2026-06-17 10:47
stdlib CVE-2024-45341 低危 v1.19 1.22.11, 1.23.5, 1.24.0-rc.2 golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45341

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-01-28 02:15 修改: 2026-06-17 07:54
stdlib CVE-2025-58186 低危 v1.19 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2025-10-29 23:16 修改: 2026-06-17 09:44
stdlib CVE-2026-27139 低危 v1.19 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-03-06 22:16 修改: 2026-06-17 10:26
golang.org/x/sys CVE-2026-39824 未知 v0.0.0-20220715151400-c0bba94af5f8 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:ede9d8b577c1204ee15bf6334a06d0b438d2b1ba6af9d7e4db20c0f467a980b7

发布日期: 2026-05-22 20:16 修改: 2026-06-17 10:42
usr/local/bin/uv (rustbinary)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
usr/local/bin/uvx (rustbinary)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×