| libcrypto3 |
CVE-2026-31789 |
严重 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-31789 |
严重 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2025-69421 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28387 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28388 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28389 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-28390 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-45447 |
高危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| libexpat |
CVE-2026-25210 |
高危 |
2.7.3-r0 |
2.7.4-r0 |
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
|
| libcap2 |
CVE-2026-4878 |
高危 |
2.76-r0 |
2.78-r0 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:541c463eb23b1195d533c5a4ce65703ffac8b01fcdf0216b8df3c8df1a2913b7
发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
|
| libssl3 |
CVE-2025-15467 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| libssl3 |
CVE-2025-69421 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-45447 |
高危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| musl |
CVE-2026-40200 |
高危 |
1.2.5-r10 |
1.2.5-r12 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| musl-utils |
CVE-2026-40200 |
高危 |
1.2.5-r10 |
1.2.5-r12 |
musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-10 17:17 修改: 2026-04-27 19:18
|
| nghttp2-libs |
CVE-2026-27135 |
高危 |
1.65.0-r0 |
1.68.1 |
nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
|
| libcrypto3 |
CVE-2025-15467 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| openssl |
CVE-2025-15467 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
|
| openssl |
CVE-2025-69421 |
高危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28387 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28388 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28389 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28390 |
高危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-45447 |
高危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
|
| zlib |
CVE-2026-22184 |
高危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22184
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-07 21:16 修改: 2026-03-18 16:26
|
| libcrypto3 |
CVE-2026-34182 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libcrypto3 |
CVE-2026-34183 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
|
| libssl3 |
CVE-2025-11187 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
|
| libssl3 |
CVE-2025-69419 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-2673 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-34182 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libssl3 |
CVE-2026-34183 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
|
| libssl3 |
CVE-2026-42764 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-45445 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-42764 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| musl |
CVE-2026-6042 |
中危 |
1.2.5-r10 |
1.2.5-r11 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| libcrypto3 |
CVE-2026-45445 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| musl-utils |
CVE-2026-6042 |
中危 |
1.2.5-r10 |
1.2.5-r11 |
musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-10 09:16 修改: 2026-04-24 18:01
|
| busybox |
CVE-2024-58251 |
中危 |
1.37.0-r19 |
1.37.0-r20 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| openssh-client-common |
CVE-2025-61984 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-client-common |
CVE-2025-61985 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-client-default |
CVE-2025-61984 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-client-default |
CVE-2025-61985 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-keygen |
CVE-2025-61984 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| openssh-keygen |
CVE-2025-61985 |
中危 |
10.0_p1-r9 |
10.0_p1-r10 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
|
| libexpat |
CVE-2026-32776 |
中危 |
2.7.3-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat |
CVE-2026-32777 |
中危 |
2.7.3-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| libexpat |
CVE-2026-32778 |
中危 |
2.7.3-r0 |
2.7.5-r0 |
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
|
| busybox-binsh |
CVE-2024-58251 |
中危 |
1.37.0-r19 |
1.37.0-r20 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| c-ares |
CVE-2025-62408 |
中危 |
1.34.5-r0 |
1.34.6-r0 |
c-ares: c-ares: Denial of Service due to query termination after maximum attempts
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62408
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2025-12-08 22:15 修改: 2026-02-02 14:40
|
| libcrypto3 |
CVE-2025-11187 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
|
| libcrypto3 |
CVE-2025-69419 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-2673 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl |
CVE-2025-11187 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution or denial of service through crafted PKCS#12 file
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11187
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-03-20 14:16
|
| openssl |
CVE-2025-69419 |
中危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-2673 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: OpenSSL TLS 1.3 server may choose unexpected key agreement group
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2673
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-03-13 19:54 修改: 2026-06-05 19:48
|
| openssl |
CVE-2026-31790 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34182 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-34183 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34183
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 16:17
|
| openssl |
CVE-2026-42764 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL pointer dereference in QUIC server initial packet handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42764
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45445 |
中危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| ssl_client |
CVE-2024-58251 |
中危 |
1.37.0-r19 |
1.37.0-r20 |
In netstat in BusyBox through 1.37.0, local users can launch of networ ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 18:16 修改: 2026-04-15 00:35
|
| xz |
CVE-2026-34743 |
中危 |
5.8.1-r0 |
5.8.3-r0 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| xz-libs |
CVE-2026-34743 |
中危 |
5.8.1-r0 |
5.8.3-r0 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libcrypto3 |
CVE-2026-31790 |
中危 |
3.5.4-r0 |
3.5.6-r0 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| zlib |
CVE-2026-27171 |
中危 |
1.3.1-r2 |
1.3.2-r0 |
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libssl3 |
CVE-2026-42767 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42768 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42769 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42770 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-45446 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-7383 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-9076 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| busybox |
CVE-2025-46394 |
低危 |
1.37.0-r19 |
1.37.0-r20 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| busybox-binsh |
CVE-2025-46394 |
低危 |
1.37.0-r19 |
1.37.0-r20 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| libcrypto3 |
CVE-2025-15468 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| libcrypto3 |
CVE-2025-15469 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| libexpat |
CVE-2026-24515 |
低危 |
2.7.3-r0 |
2.7.4-r0 |
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:51836bf760fa7e925cbaa37fb1ad82bf059f1f7fac0861283b085b8b23392e0f
发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
|
| libcrypto3 |
CVE-2025-66199 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| libcrypto3 |
CVE-2025-68160 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2025-69418 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2025-69420 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-22795 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-22796 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libcrypto3 |
CVE-2026-34180 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-34181 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libcrypto3 |
CVE-2026-42766 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-42767 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-42768 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-42769 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-42770 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-45446 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-7383 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libcrypto3 |
CVE-2026-9076 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2025-15468 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| libssl3 |
CVE-2025-15469 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| libssl3 |
CVE-2025-66199 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| libssl3 |
CVE-2025-68160 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69418 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2025-69420 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2025-15468 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:38
|
| openssl |
CVE-2025-15469 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Data integrity bypass in `openssl dgst` command due to silent truncation
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15469
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| openssl |
CVE-2025-66199 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-02-02 18:37
|
| openssl |
CVE-2025-68160 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2025-69418 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2025-69420 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-22795 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-22796 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34180 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-34181 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| openssl |
CVE-2026-42766 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42767 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42768 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMS_decrypt() and PKCS7_decrypt()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42768
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42769 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42769
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42770 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45446 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-7383 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-9076 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:b6e6a2ca3ce4523031e62170927447343c8b6e02588e3b88748b10dac45ceda1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-22795 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| ssl_client |
CVE-2025-46394 |
低危 |
1.37.0-r19 |
1.37.0-r20 |
In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2025-04-23 16:15 修改: 2026-06-02 14:16
|
| libssl3 |
CVE-2026-22796 |
低危 |
3.5.4-r0 |
3.5.5-r0 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-34180 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-34181 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34181
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 17:16
|
| libssl3 |
CVE-2026-42766 |
低危 |
3.5.4-r0 |
3.5.7-r0 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:256f393e029fa2063d8c93720da36a74a032bed3355a2bc3e313ad12f8bde9d1
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|