docker.io/gloridust/wechat-on-cloud:1.2.3 linux/amd64

docker.io/gloridust/wechat-on-cloud:1.2.3 - Trivy安全扫描结果 扫描时间: 2026-06-23 21:57
全部漏洞信息
低危漏洞:559 中危漏洞:992 高危漏洞:503 严重漏洞:64

系统OS: debian 12.11 扫描引擎: Trivy 扫描时间: 2026-06-23 21:57

docker.io/gloridust/wechat-on-cloud:1.2.3 (debian 12.11) (debian)
低危漏洞:546 中危漏洞:814 高危漏洞:313 严重漏洞:56
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
exim4-base CVE-2026-40685 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds h ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40685

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:51
exim4-base CVE-2026-40687 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when the SPA authentication driver is used with ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40687

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 19:17
exim4-config CVE-2026-40685 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds h ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40685

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:51
exim4-config CVE-2026-40687 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when the SPA authentication driver is used with ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40687

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 19:17
exim4-daemon-light CVE-2026-40685 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds h ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40685

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:51
exim4-daemon-light CVE-2026-40687 严重 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when the SPA authentication driver is used with ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40687

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 19:17
ffmpeg CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libaom3 CVE-2023-6879 严重 3.6.0-1+deb12u1 aom: heap-buffer-overflow on frame size change

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6879

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-12-27 23:15 修改: 2025-02-13 18:16
libavcodec59 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libavdevice59 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libavfilter8 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libavformat59 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libavutil57 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libegl-mesa0 CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
libgbm1 CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
libgl1-mesa-dri CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
libglapi-mesa CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
libglib2.0-0 CVE-2025-14087 严重 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-10 09:15 修改: 2026-06-10 18:16
libglib2.0-bin CVE-2025-14087 严重 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-10 09:15 修改: 2026-06-10 18:16
libglib2.0-data CVE-2025-14087 严重 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: GLib: Buffer underflow in GVariant parser leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-10 09:15 修改: 2026-06-10 18:16
libglx-mesa0 CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
libgnutls-dane0 CVE-2026-33845 严重 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-42010 严重 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
libgnutls30 CVE-2026-33845 严重 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-42010 严重 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
libmbedcrypto7 CVE-2025-47917 严重 2.28.3-1 Mbed TLS before 3.6.4 allows a use-after-free in certain situations of ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47917

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-20 19:15 修改: 2025-11-03 20:19
libmbedcrypto7 CVE-2026-34873 严重 2.28.3-1 mbedtls: Mbed TLS: Client impersonation during TLS 1.3 session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34873

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 21:17 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2026-34875 严重 2.28.3-1 mbedtls: Mbed TLS and TF-PSA-Crypto: Arbitrary code execution due to buffer overflow in FFDH key export

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34875

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 18:16 修改: 2026-06-05 19:40
libperl5.36 CVE-2026-42496 严重 5.36.0-7+deb12u2 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
libperl5.36 CVE-2026-8376 严重 5.36.0-7+deb12u2 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
libpostproc56 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libsqlite3-0 CVE-2025-6965 严重 3.40.1-2+deb12u1 3.40.1-2+deb12u2 sqlite: Integer Truncation in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-15 14:15 修改: 2026-04-14 10:16
libsqlite3-0 CVE-2025-7458 严重 3.40.1-2+deb12u1 sqlite: SQLite integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-29 13:15 修改: 2025-08-11 19:11
libssl3 CVE-2026-31789 严重 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libswresample4 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libswscale6 CVE-2026-40962 严重 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 FFmpeg: FFmpeg: Integer overflow and out-of-bounds write via CENC subsample data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 02:16 修改: 2026-04-20 19:54
libunbound8 CVE-2026-33278 严重 1.17.1-2+deb12u2 unbound: Unbound DNSSEC Validator Use-After-Free via Deep Copy Pointer Overwrite Leading to DoS and Possible Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33278

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:49
libunbound8 CVE-2026-42960 严重 1.17.1-2+deb12u2 unbound: Unbound DNS Cache Poisoning via Promiscuous Additional Section RRSet Acceptance

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42960

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:51
mesa-va-drivers CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
mesa-vulkan-drivers CVE-2026-40393 严重 22.3.6-1+deb12u1 In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-16 16:17
nginx CVE-2026-42055 严重 1.22.1-9+deb12u2 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nginx CVE-2026-42945 严重 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: NGINX: Arbitrary Code Execution Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-21 19:16
nginx-common CVE-2026-42055 严重 1.22.1-9+deb12u2 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42055

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nginx-common CVE-2026-42945 严重 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: NGINX: Arbitrary Code Execution Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42945

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-21 19:16
openssl CVE-2026-31789 严重 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
perl CVE-2026-42496 严重 5.36.0-7+deb12u2 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl CVE-2026-8376 严重 5.36.0-7+deb12u2 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
perl-base CVE-2026-42496 严重 5.36.0-7+deb12u2 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-base CVE-2026-8376 严重 5.36.0-7+deb12u2 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
perl-modules-5.36 CVE-2026-42496 严重 5.36.0-7+deb12u2 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-modules-5.36 CVE-2026-8376 严重 5.36.0-7+deb12u2 Perl versions through 5.43.10 have a heap buffer overflow when compili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
xserver-common CVE-2026-34000 严重 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34000

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-05 16:16 修改: 2026-06-08 05:16
xserver-common CVE-2026-34002 严重 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34002

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-05 16:16 修改: 2026-06-08 05:16
xserver-xorg-core CVE-2026-34000 严重 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34000

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-05 16:16 修改: 2026-06-08 05:16
xserver-xorg-core CVE-2026-34002 严重 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34002

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-05 16:16 修改: 2026-06-08 05:16
zlib1g CVE-2023-45853 严重 1:1.2.13.dfsg-1 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
cups-daemon CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-filters CVE-2024-47850 高危 1.28.17-3+deb12u1 cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47850

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-04 05:15 修改: 2026-04-15 00:35
cups-filters-core-drivers CVE-2024-47850 高危 1.28.17-3+deb12u1 cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47850

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-04 05:15 修改: 2026-04-15 00:35
cups-ipp-utils CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-ppdc CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-server-common CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
curl CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
curl CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
dirmngr CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
chromium CVE-2026-12437 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in WebShare

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12437

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12438 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in WebView

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12438

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
exim4-base CVE-2026-40684 高危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, on systems using musl libc (not glibc), an atta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40684

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 18:16
exim4-base CVE-2026-45185 高危 4.96-15+deb12u7 4.96-15+deb12u9 Exim before 4.99.3, in certain GnuTLS configurations, has a remotely r ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45185

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-12 20:16 修改: 2026-05-28 18:46
chromium CVE-2026-12439 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Digital Credentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12439

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12440 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in DigitalCredentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12440

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
exim4-config CVE-2026-40684 高危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, on systems using musl libc (not glibc), an atta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40684

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 18:16
exim4-config CVE-2026-45185 高危 4.96-15+deb12u7 4.96-15+deb12u9 Exim before 4.99.3, in certain GnuTLS configurations, has a remotely r ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45185

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-12 20:16 修改: 2026-05-28 18:46
chromium CVE-2026-12441 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in File Input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12441

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12442 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12442

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
exim4-daemon-light CVE-2026-40684 高危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, on systems using musl libc (not glibc), an atta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40684

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 18:16
exim4-daemon-light CVE-2026-45185 高危 4.96-15+deb12u7 4.96-15+deb12u9 Exim before 4.99.3, in certain GnuTLS configurations, has a remotely r ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45185

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-12 20:16 修改: 2026-05-28 18:46
chromium CVE-2026-12443 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Web Authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12443

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ffmpeg CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
ffmpeg CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
ffmpeg CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
gir1.2-packagekitglib-1.0 CVE-2026-41651 高危 1.2.6-5 1.2.6-5+deb12u1 PackageKit: race condition vulnerability leads to arbitrary package installation as root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41651

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 14:17 修改: 2026-05-05 20:16
gnupg CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gnupg-l10n CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gnupg-utils CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-agent CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-wks-client CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-wks-server CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgconf CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgsm CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgv CVE-2025-68973 高危 2.2.40-1.1 2.2.40-1.1+deb12u2 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
jq CVE-2025-48060 高危 1.6-2.1 1.6-2.1+deb12u1 jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48060

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-05-21 18:15 修改: 2025-11-03 19:16
jq CVE-2026-32316 高危 1.6-2.1 jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32316

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 18:16 修改: 2026-04-22 16:29
jq CVE-2026-40164 高危 1.6-2.1 jq: jq: Denial of Service via crafted JSON object causing hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40164

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-14 00:16 修改: 2026-04-28 21:15
chromium CVE-2026-12445 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12445

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libaom3 CVE-2023-39616 高危 3.6.0-1+deb12u1 AOMedia v3.0.0 to v3.5.0 was discovered to contain an invalid read mem ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39616

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-29 17:15 修改: 2024-11-21 08:15
libaom3 CVE-2026-56208 高危 3.6.0-1+deb12u1 libaom: libaom: heap buffer overflow in AV1 encoder first-pass stats buffer via LAP mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56208

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libaom3 CVE-2026-56209 高危 3.6.0-1+deb12u1 libaom: libaom: arbitrary address write via SVC layer context OOB and cyclic refresh map pointer hijack

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56209

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libaom3 CVE-2026-56210 高危 3.6.0-1+deb12u1 libaom: libaom: heap-buffer-overflow read via missing bounds check in ctrl_set_layer_id

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libaom3 CVE-2026-56211 高危 3.6.0-1+deb12u1 libaom: libaom: remote code execution via SVC layer context handling with attacker-controlled frames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56211

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12447 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Heap buffer overflow in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12447

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavcodec59 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libavcodec59 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavcodec59 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
chromium CVE-2026-12448 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in WebView

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12448

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavdevice59 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libavdevice59 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavdevice59 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
chromium CVE-2026-12449 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Chromoting

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12449

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavfilter8 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libavfilter8 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavfilter8 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
chromium CVE-2026-12451 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in DigitalCredentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12451

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavformat59 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libavformat59 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavformat59 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
chromium CVE-2026-12452 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Downloads

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12452

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavutil57 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libavutil57 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavutil57 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libcap2 CVE-2026-4878 高危 1:2.66-4+deb12u1 1:2.66-4+deb12u3 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
libcap2-bin CVE-2026-4878 高危 1:2.66-4+deb12u1 1:2.66-4+deb12u3 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
libcjson1 CVE-2025-57052 高危 1.7.15-1+deb12u2 1.7.15-1+deb12u4 cJSON: out-of-bounds access in decode_array_index_from_pointer() in cJSON_Utils.c via crafted JSON pointer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-57052

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-03 15:15 修改: 2025-11-03 19:16
libcups2 CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libcupsfilters1 CVE-2024-47850 高危 1.28.17-3+deb12u1 cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47850

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-04 05:15 修改: 2026-04-15 00:35
libcurl3-gnutls CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libcurl3-gnutls CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
libcurl4 CVE-2026-5773 高危 7.88.1-10+deb12u14 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libcurl4 CVE-2026-6276 高危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
libde265-0 CVE-2026-33164 高危 1.0.11-1+deb12u2 libde265 is an open source implementation of the h.265 video codec. Pr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33164

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 21:17 修改: 2026-03-23 20:05
chromium CVE-2026-12454 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Race in Safe Browsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12454

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexif12 CVE-2026-32775 高危 0.6.24-1+b1 0.6.24-1+deb12u1 libexif: libexif: Buffer overwrite via integer underflow in MakerNotes decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32775

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 14:19 修改: 2026-04-21 13:54
libexif12 CVE-2026-40385 高危 0.6.24-1+b1 0.6.24-1+deb12u1 libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-14 20:15
libexif12 CVE-2026-40386 高危 0.6.24-1+b1 0.6.24-1+deb12u1 libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40386

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-12 19:16 修改: 2026-04-14 20:43
libexpat1 CVE-2023-52425 高危 2.5.0-1+deb12u1 2.5.0-1+deb12u2 expat: parsing large tokens can trigger a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-04 20:15 修改: 2025-11-04 19:16
libexpat1 CVE-2025-59375 高危 2.5.0-1+deb12u1 firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-15 03:15 修改: 2026-05-12 13:17
libexpat1 CVE-2026-25210 高危 2.5.0-1+deb12u1 libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
libexpat1 CVE-2026-45186 高危 2.5.0-1+deb12u1 libexpat: denial of service via crafted XML input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-10 07:16 修改: 2026-05-14 17:20
libfontembed1 CVE-2024-47850 高危 1.28.17-3+deb12u1 cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47850

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-04 05:15 修改: 2026-04-15 00:35
chromium CVE-2026-12455 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Tab Strip

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12455

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgdk-pixbuf-2.0-0 CVE-2026-5201 高危 2.42.10+dfsg-1+deb12u2 2.42.10+dfsg-1+deb12u4 gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5201

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 09:16 修改: 2026-06-10 18:17
libgdk-pixbuf2.0-common CVE-2026-5201 高危 2.42.10+dfsg-1+deb12u2 2.42.10+dfsg-1+deb12u4 gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5201

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 09:16 修改: 2026-06-10 18:17
libgif7 CVE-2026-23868 高危 5.2.1-2.5 giflib: Giflib: Double-free vulnerability leading to memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23868

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-10 20:16 修改: 2026-05-07 18:18
libgif7 CVE-2026-26740 高危 5.2.1-2.5 giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26740

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-18 18:16 修改: 2026-03-21 00:09
chromium CVE-2026-12456 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12456

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12457 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient data validation in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12457

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12459 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Serial

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12459

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12460 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient policy enforcement in File System Access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12460

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12462 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Media

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12462

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12463 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Views

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12463

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12464 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Browser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12464

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12465 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Metrics

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12465

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls-dane0 CVE-2025-32988 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS otherName SAN export

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls-dane0 CVE-2025-32990 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS certtool template parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-10 10:15 修改: 2026-04-20 22:16
libgnutls-dane0 CVE-2026-33846 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-3833 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-42009 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
chromium CVE-2026-12466 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: webrtc: chromium-browser: Heap buffer overflow in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12466

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12467 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12467

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30 CVE-2025-32988 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS otherName SAN export

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls30 CVE-2025-32990 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS certtool template parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-07-10 10:15 修改: 2026-04-20 22:16
libgnutls30 CVE-2026-33846 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-3833 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-42009 高危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
libgstreamer-plugins-base1.0-0 CVE-2026-2921 高危 1.22.0-3+deb12u4 1.22.0-3+deb12u6 GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 14:19 修改: 2026-03-29 13:16
libharfbuzz-subset0 CVE-2023-25193 高危 6.0.0+dfsg-3 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2023-02-04 20:15 修改: 2025-03-25 21:15
libharfbuzz0b CVE-2023-25193 高危 6.0.0+dfsg-3 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-02-04 20:15 修改: 2025-03-25 21:15
libheif1 CVE-2025-68431 高危 1.15.1-1+deb12u1 libheif is an HEIF and AVIF file format decoder and encoder. Prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68431

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-29 19:15 修改: 2026-02-25 14:53
libheif1 CVE-2026-32740 高危 1.15.1-1+deb12u1 libheif: libheif: Arbitrary code execution or denial of service via crafted HEIF/AVIF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32740

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 20:16 修改: 2026-05-21 14:16
libheif1 CVE-2026-32741 高危 1.15.1-1+deb12u1 libheif: libheif: Heap buffer overflow vulnerability in image decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32741

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 21:16 修改: 2026-05-20 17:16
libheif1 CVE-2026-32882 高危 1.15.1-1+deb12u1 libheif: libheif: Denial of Service and Information Disclosure vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 21:16 修改: 2026-05-20 18:16
libheif1 CVE-2026-41071 高危 1.15.1-1+deb12u1 libheif is a HEIF and AVIF file format decoder and encoder. In version ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41071

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 22:16 修改: 2026-05-27 15:25
libjq1 CVE-2025-48060 高危 1.6-2.1 1.6-2.1+deb12u1 jq: AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48060

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-05-21 18:15 修改: 2025-11-03 19:16
libjq1 CVE-2026-32316 高危 1.6-2.1 jq: jq: Denial of Service or potential arbitrary code execution due to integer overflow and heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32316

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 18:16 修改: 2026-04-22 16:29
libjq1 CVE-2026-40164 高危 1.6-2.1 jq: jq: Denial of Service via crafted JSON object causing hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40164

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-14 00:16 修改: 2026-04-28 21:15
liblcms2-2 CVE-2026-41254 高危 2.14-2 2.14-2+deb12u1 Little CMS: lcms2: mm2/Little-CMS: Little CMS: Information disclosure or denial of service via integer overflow in CubeSize

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41254

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-18 07:16 修改: 2026-05-07 18:16
libldap-2.5-0 CVE-2023-2953 高危 2.5.13+dfsg-5 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
libldap-common CVE-2023-2953 高危 2.5.13+dfsg-5 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-05-30 22:15 修改: 2025-01-10 22:15
chromium CVE-2026-12468 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Updater

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12468

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12437 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in WebShare

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12437

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12438 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in WebView

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12438

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmbedcrypto7 CVE-2024-23775 高危 2.28.3-1 Integer Overflow vulnerability in Mbed TLS 2.x before 2.28.7 and 3.x b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23775

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-01-31 08:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2025-48965 高危 2.28.3-1 Mbed TLS before 3.6.4 has a NULL pointer dereference because mbedtls_a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48965

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-20 18:15 修改: 2025-11-03 20:19
libmbedcrypto7 CVE-2025-52496 高危 2.28.3-1 Mbed TLS before 3.6.4 has a race condition in AESNI detection if certa ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52496

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-04 15:15 修改: 2025-11-03 20:19
libmbedcrypto7 CVE-2026-25835 高危 2.28.3-1 Mbed TLS before 3.6.6 and TF-PSA-Crypto before 1.1.0 misuse seeds in a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25835

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 19:16 修改: 2026-06-05 19:40
libmbedcrypto7 CVE-2026-34872 高危 2.28.3-1 mbedtls: Mbed TLS and TF-PSA-Crypto: Shared secret manipulation via improper FFDH input validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34872

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 20:16 修改: 2026-04-03 20:02
libmfx1 CVE-2023-45221 高危 22.5.4-1 Improper buffer restrictions in Intel(R) Media SDK all versions may al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45221

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:15 修改: 2025-08-28 01:45
libncursesw6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
libnghttp2-14 CVE-2026-27135 高危 1.52.0-1+deb12u2 1.52.0-1+deb12u3 nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
libpackagekit-glib2-18 CVE-2026-41651 高危 1.2.6-5 1.2.6-5+deb12u1 PackageKit: race condition vulnerability leads to arbitrary package installation as root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41651

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 14:17 修改: 2026-05-05 20:16
libpam-modules CVE-2025-6020 高危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam-modules-bin CVE-2025-6020 高危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam-runtime CVE-2025-6020 高危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam0g CVE-2025-6020 高危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
chromium-common CVE-2026-12439 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Digital Credentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12439

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12440 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in DigitalCredentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12440

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libperl5.36 CVE-2023-31484 高危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-11-03 22:16
libperl5.36 CVE-2026-42497 高危 5.36.0-7+deb12u2 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
libperl5.36 CVE-2026-48962 高危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
libperl5.36 CVE-2026-9538 高危 5.36.0-7+deb12u2 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
libpng16-16 CVE-2025-64720 高危 1.6.39-2 1.6.39-2+deb12u1 libpng: LIBPNG buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:35
libpng16-16 CVE-2025-65018 高危 1.6.39-2 1.6.39-2+deb12u1 libpng: LIBPNG heap buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
libpng16-16 CVE-2025-66293 高危 1.6.39-2 1.6.39-2+deb12u1 libpng: LIBPNG out-of-bounds read in png_image_read_composite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 21:15 修改: 2025-12-16 19:12
libpng16-16 CVE-2026-22695 高危 1.6.39-2 1.6.39-2+deb12u2 libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
libpng16-16 CVE-2026-22801 高危 1.6.39-2 1.6.39-2+deb12u2 libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
libpng16-16 CVE-2026-25646 高危 1.6.39-2 1.6.39-2+deb12u3 libpng: LIBPNG has a heap buffer overflow in png_set_quantize

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-10 18:16 修改: 2026-02-13 20:43
libpoppler-cpp0v5 CVE-2026-10118 高危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10118

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 17:16 修改: 2026-06-10 12:16
libpoppler126 CVE-2026-10118 高危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10118

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 17:16 修改: 2026-06-10 12:16
chromium-common CVE-2026-12441 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in File Input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12441

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpostproc56 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libpostproc56 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libpostproc56 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-13836 高危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Excessive read buffering DoS in http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-05-18 16:58
libpython3.11-minimal CVE-2025-69534 高危 3.11.2-6+deb12u6 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-05 15:16 修改: 2026-03-13 01:25
libpython3.11-minimal CVE-2026-3644 高危 3.11.2-6+deb12u6 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
libpython3.11-minimal CVE-2026-4224 高危 3.11.2-6+deb12u6 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
libpython3.11-minimal CVE-2026-6100 高危 3.11.2-6+deb12u6 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
libpython3.11-minimal CVE-2026-7210 高危 3.11.2-6+deb12u6 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
libpython3.11-stdlib CVE-2025-13836 高危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Excessive read buffering DoS in http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-05-18 16:58
libpython3.11-stdlib CVE-2025-69534 高危 3.11.2-6+deb12u6 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-05 15:16 修改: 2026-03-13 01:25
libpython3.11-stdlib CVE-2026-3644 高危 3.11.2-6+deb12u6 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
libpython3.11-stdlib CVE-2026-4224 高危 3.11.2-6+deb12u6 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
libpython3.11-stdlib CVE-2026-6100 高危 3.11.2-6+deb12u6 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
libpython3.11-stdlib CVE-2026-7210 高危 3.11.2-6+deb12u6 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
libsndfile1 CVE-2022-33065 高危 1.2.0-1 1.2.0-1+deb12u1 libsndfile: integer overflow in src/mat4.c and src/au.c leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33065

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-07-18 14:15 修改: 2024-11-21 07:07
libsndfile1 CVE-2026-37555 高危 1.2.0-1 libsndfile: integer overflow in ima_reader_init()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-37555

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-29 16:16 修改: 2026-05-01 18:37
chromium-common CVE-2026-12442 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12442

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12443 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Web Authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12443

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsqlite3-0 CVE-2026-11822 高危 3.40.1-2+deb12u1 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 20:16 修改: 2026-06-11 17:12
libsqlite3-0 CVE-2026-11824 高危 3.40.1-2+deb12u1 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 20:16 修改: 2026-06-11 17:12
libssh-gcrypt-4 CVE-2025-5318 高危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: out-of-bounds read in sftp_handle()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5318

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-24 14:15 修改: 2026-02-27 17:16
libssh-gcrypt-4 CVE-2025-5372 高危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Incorrect Return Code Handling in ssh_kdf() in libssh

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5372

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-04 06:15 修改: 2026-06-15 03:16
libssh-gcrypt-4 CVE-2025-5987 高危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Invalid return code for chacha20 poly1305 with OpenSSL backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5987

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-07 15:15 修改: 2026-03-20 21:17
libssh-gcrypt-4 CVE-2026-0966 高危 0.10.6-0+deb12u1 libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0966

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2026-3731 高危 0.10.6-0+deb12u1 libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
libssh2-1 CVE-2026-7598 高危 1.10.0-3+b1 libssh2: integer overflow via large username or password arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7598

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-01 22:16 修改: 2026-05-07 01:47
chromium-common CVE-2026-12445 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12445

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssl3 CVE-2025-15467 高危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
libssl3 CVE-2025-69421 高危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-28387 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-28388 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-28389 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-28390 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-45447 高危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:56
chromium-common CVE-2026-12447 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Heap buffer overflow in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12447

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswresample4 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libswresample4 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libswresample4 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
chromium-common CVE-2026-12448 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in WebView

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12448

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswscale6 CVE-2025-1594 高危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 A vulnerability, which was classified as critical, was found in FFmpeg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1594

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-23 21:15 修改: 2025-06-03 18:04
libswscale6 CVE-2025-59732 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Heap memory corruption when decoding OpenEXR files with DWAA/DWAB compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libswscale6 CVE-2025-59733 高危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: FFmpeg: Buffer overflow in OpenEXR DWAA/DWAB decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59733

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libtheora0 CVE-2026-5673 高危 1.1.1+dfsg.1-16.1+b1 libtheora: libtheora: Denial of Service or Information Disclosure via malformed AVI file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5673

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-06 10:16 修改: 2026-05-01 19:53
libtiff6 CVE-2023-52355 高危 4.5.0-6+deb12u2 libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52355

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-01-25 20:15 修改: 2026-02-27 17:16
libtiff6 CVE-2025-9900 高危 4.5.0-6+deb12u2 4.5.0-6+deb12u3 libtiff: Libtiff Write-What-Where

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9900

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-23 17:15 修改: 2026-04-20 22:16
libtiff6 CVE-2026-4775 高危 4.5.0-6+deb12u2 4.5.0-6+deb12u4 libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4775

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-06-15 03:16
libtinfo6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
chromium-common CVE-2026-12449 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Chromoting

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12449

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12451 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in DigitalCredentials

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12451

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libunbound8 CVE-2025-5994 高危 1.17.1-2+deb12u2 1.17.1-2+deb12u3 unbound: Unbound Cache poisoning

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5994

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-16 15:15 修改: 2026-04-15 00:35
libunbound8 CVE-2026-40622 高危 1.17.1-2+deb12u2 NLnet Labs Unbound 1.16.2 up to and including version 1.25.0 has a vul ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40622

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-26 18:28
libunbound8 CVE-2026-41292 高危 1.17.1-2+deb12u2 NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41292

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:49
libunbound8 CVE-2026-42944 高危 1.17.1-2+deb12u2 unbound: Heap overflow and crash with multiple nsid, cookie, padding EDNS options

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42944

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:50
libunbound8 CVE-2026-42959 高危 1.17.1-2+deb12u2 unbound: Unbound DNSSEC Validator Denial of Service via Incorrect Write Offset Counter in Chase-Reply Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42959

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:51
libvpx7 CVE-2026-2447 高危 1.12.0-1+deb12u4 1.12.0-1+deb12u5 libvpx: Heap buffer overflow in libvpx

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2447

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-16 15:18 修改: 2026-04-13 15:17
libxml2 CVE-2025-49794 高危 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u3 libxml: Heap use after free (UAF) leads to Denial of service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
libxml2 CVE-2025-49796 高危 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u3 libxml: Type confusion leads to Denial of service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
libzvbi-common CVE-2025-2173 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been classif ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2173

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:26
libzvbi-common CVE-2025-2174 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been declare ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2174

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:25
libzvbi-common CVE-2025-2176 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability classified as critical has been found in libzvbi up to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2176

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 08:15 修改: 2025-10-10 20:17
libzvbi0 CVE-2025-2173 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been classif ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2173

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:26
libzvbi0 CVE-2025-2174 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been declare ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2174

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:25
libzvbi0 CVE-2025-2176 高危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability classified as critical has been found in libzvbi up to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2176

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 08:15 修改: 2025-10-10 20:17
chromium-common CVE-2026-12452 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Downloads

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12452

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12454 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Race in Safe Browsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12454

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ncurses-base CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
ncurses-bin CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
chromium-common CVE-2026-12455 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Tab Strip

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12455

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12456 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12456

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nginx CVE-2026-27651 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-30 14:02
nginx CVE-2026-27654 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:16
nginx CVE-2026-32647 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:11
nginx CVE-2026-42946 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u8 nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-06-16 19:58
nginx CVE-2026-9256 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u8 nginx: ngx_http_rewrite_module: code execution and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 15:16 修改: 2026-06-16 19:59
chromium-common CVE-2026-12457 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient data validation in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12457

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12459 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Serial

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12459

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nginx-common CVE-2026-27651 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27651

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-30 14:02
nginx-common CVE-2026-27654 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27654

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:16
nginx-common CVE-2026-32647 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32647

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:11
nginx-common CVE-2026-42946 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u8 nginx: ngx_http_scgi_module: ngx_http_uwsgi_module: information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42946

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-06-16 19:58
nginx-common CVE-2026-9256 高危 1.22.1-9+deb12u2 1.22.1-9+deb12u8 nginx: ngx_http_rewrite_module: code execution and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 15:16 修改: 2026-06-16 19:59
openssh-client CVE-2026-3497 高危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u9 openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-12 19:16 修改: 2026-06-02 19:43
openssh-client CVE-2026-35385 高危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u10 OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:02
openssh-client CVE-2026-35386 高危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u10 OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:03
openssh-client CVE-2026-35414 高危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u10 OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 18:16 修改: 2026-04-10 19:36
chromium-common CVE-2026-12460 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient policy enforcement in File System Access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12460

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl CVE-2025-15467 高危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
openssl CVE-2025-69421 高危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2026-28387 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl CVE-2026-28388 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl CVE-2026-28389 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl CVE-2026-28390 高危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl CVE-2026-45447 高危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:56
packagekit CVE-2026-41651 高危 1.2.6-5 1.2.6-5+deb12u1 PackageKit: race condition vulnerability leads to arbitrary package installation as root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41651

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 14:17 修改: 2026-05-05 20:16
chromium-common CVE-2026-12462 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Media

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12462

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12463 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Views

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12463

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
perl CVE-2023-31484 高危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-11-03 22:16
perl CVE-2026-42497 高危 5.36.0-7+deb12u2 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl CVE-2026-48962 高危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl CVE-2026-9538 高危 5.36.0-7+deb12u2 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
chromium-common CVE-2026-12464 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Browser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12464

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12465 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Metrics

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12465

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
perl-base CVE-2023-31484 高危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-04-29 00:15 修改: 2025-11-03 22:16
perl-base CVE-2026-42497 高危 5.36.0-7+deb12u2 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-base CVE-2026-48962 高危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl-base CVE-2026-9538 高危 5.36.0-7+deb12u2 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
chromium-common CVE-2026-12466 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: webrtc: chromium-browser: Heap buffer overflow in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12466

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12467 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Use after free in Extensions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12467

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
perl-modules-5.36 CVE-2023-31484 高危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-11-03 22:16
perl-modules-5.36 CVE-2026-42497 高危 5.36.0-7+deb12u2 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
perl-modules-5.36 CVE-2026-48962 高危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
perl-modules-5.36 CVE-2026-9538 高危 5.36.0-7+deb12u2 Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
poppler-utils CVE-2026-10118 高危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Integer overflow in Poppler SplashOutputDev::tilingPatternFill leads to heap buffer overflow via unchecked dimension multiplication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10118

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 17:16 修改: 2026-06-10 12:16
python3-cryptography CVE-2023-50782 高危 38.0.4-3+deb12u1 python-cryptography: Bleichenbacher timing oracle attack against RSA decryption - incomplete fix for CVE-2020-25659

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50782

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-05 21:15 修改: 2026-03-24 12:16
python3-jwt CVE-2026-32597 高危 2.6.0-1 2.6.0-1+deb12u1 pyjwt: PyJWT accepts unknown `crit` header extensions (RFC 7515 §4.1.11 MUST violation)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32597

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-05-05 18:16
python3-jwt CVE-2026-48526 高危 2.6.0-1 python-pyjwt: PyJWT: Authentication bypass due to forged JSON Web Tokens

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48526

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-28 16:16 修改: 2026-06-01 17:45
python3-pkg-resources CVE-2025-47273 高危 66.1.1-1+deb12u1 66.1.1-1+deb12u2 setuptools: Path Traversal Vulnerability in setuptools PackageIndex

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47273

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-17 16:15 修改: 2025-06-12 16:29
python3.11 CVE-2025-13836 高危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Excessive read buffering DoS in http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-05-18 16:58
python3.11 CVE-2025-69534 高危 3.11.2-6+deb12u6 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-05 15:16 修改: 2026-03-13 01:25
python3.11 CVE-2026-3644 高危 3.11.2-6+deb12u6 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
python3.11 CVE-2026-4224 高危 3.11.2-6+deb12u6 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
python3.11 CVE-2026-6100 高危 3.11.2-6+deb12u6 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
python3.11 CVE-2026-7210 高危 3.11.2-6+deb12u6 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
python3.11-minimal CVE-2025-13836 高危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Excessive read buffering DoS in http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-05-18 16:58
python3.11-minimal CVE-2025-69534 高危 3.11.2-6+deb12u6 python-markdown: denial of service via malformed HTML-like sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-05 15:16 修改: 2026-03-13 01:25
python3.11-minimal CVE-2026-3644 高危 3.11.2-6+deb12u6 cpython: Incomplete control character validation in http.cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:30
python3.11-minimal CVE-2026-4224 高危 3.11.2-6+deb12u6 cpython: Stack overflow parsing XML with deeply nested DTD content models

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 18:16 修改: 2026-06-04 19:33
python3.11-minimal CVE-2026-6100 高危 3.11.2-6+deb12u6 python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 18:16 修改: 2026-04-17 15:18
python3.11-minimal CVE-2026-7210 高危 3.11.2-6+deb12u6 python: expat: Python/Expat: Denial of Service via crafted XML document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 18:16 修改: 2026-06-15 17:51
sudo CVE-2026-35535 高危 1.9.13p3-1+deb12u2 1.9.13p3-1+deb12u4 sudo: Sudo: Privilege escalation due to failure in privilege drop calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35535

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 03:16 修改: 2026-06-04 16:16
xdg-utils CVE-2022-4055 高危 1.1.3-4.1 xdg-utils: improper parse of mailto URIs allows bypass of Thunderbird security mechanism for attachments

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4055

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-11-19 00:15 修改: 2025-04-29 19:15
chromium-common CVE-2026-12468 高危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Updater

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12468

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cups CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
xserver-common CVE-2023-5574 高危 2:21.1.7-3+deb12u10 xorg-x11-server: Use-after-free bug in DamageDestroy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-25 20:15 修改: 2024-11-21 08:42
xserver-common CVE-2026-33999 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33999

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-common CVE-2026-34001 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34001

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-common CVE-2026-34003 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-common CVE-2026-50256 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:45
xserver-common CVE-2026-50257 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in miSyncDestroyFence()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50257

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:45
xserver-common CVE-2026-50258 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50258

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:46
xserver-common CVE-2026-50259 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50259

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 18:28
xserver-common CVE-2026-50260 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in FreeCounter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50260

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-11 18:36
xserver-common CVE-2026-50261 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in SyncChangeCounter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50261

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-15 13:46
xserver-common CVE-2026-50264 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds heap write in DRI2 DRIGetBuffers/DRIGetBuffersWithFormat

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50264

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-16 13:49
cups-client CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-common CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
xserver-xorg-core CVE-2023-5574 高危 2:21.1.7-3+deb12u10 xorg-x11-server: Use-after-free bug in DamageDestroy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5574

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-25 20:15 修改: 2024-11-21 08:42
xserver-xorg-core CVE-2026-33999 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33999

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-xorg-core CVE-2026-34001 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34001

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-xorg-core CVE-2026-34003 高危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u12 xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-23 16:16 修改: 2026-06-08 05:16
xserver-xorg-core CVE-2026-50256 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:45
xserver-xorg-core CVE-2026-50257 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in miSyncDestroyFence()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50257

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:45
xserver-xorg-core CVE-2026-50258 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50258

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 16:46
xserver-xorg-core CVE-2026-50259 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50259

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-08 18:28
xserver-xorg-core CVE-2026-50260 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in FreeCounter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50260

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-11 18:36
xserver-xorg-core CVE-2026-50261 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in SyncChangeCounter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50261

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-15 13:46
xserver-xorg-core CVE-2026-50264 高危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds heap write in DRI2 DRIGetBuffers/DRIGetBuffersWithFormat

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50264

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-16 13:49
cups-core-drivers CVE-2026-34980 高危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34980

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libavfilter8 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libavfilter8 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libavfilter8 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavfilter8 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libavfilter8 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libavfilter8 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libavfilter8 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavfilter8 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libavfilter8 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
cups-daemon CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
cups-daemon CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
cups-daemon CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-daemon CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
libavformat59 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libavformat59 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libavformat59 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavformat59 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavformat59 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavformat59 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libavformat59 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavformat59 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavformat59 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libavformat59 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libavformat59 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavformat59 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavformat59 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libavformat59 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libavformat59 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libavformat59 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libavformat59 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libavformat59 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavformat59 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libavformat59 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libavformat59 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libavformat59 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavformat59 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libavformat59 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
cups-daemon CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
cups-daemon CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
cups-daemon CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
chromium CVE-2026-12461 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Out of bounds read in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12461

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavutil57 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libavutil57 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libavutil57 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavutil57 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavutil57 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavutil57 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libavutil57 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavutil57 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavutil57 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libavutil57 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libavutil57 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavutil57 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavutil57 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libavutil57 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libavutil57 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libavutil57 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libavutil57 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libavutil57 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavutil57 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libavutil57 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libavutil57 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libavutil57 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavutil57 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libavutil57 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
libblkid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libblkid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
libbz2-1.0 CVE-2026-42250 中危 1.0.8-5+b1 bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
libc-bin CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc-bin CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-bin CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-bin CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc-l10n CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc-l10n CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-l10n CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc-l10n CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc6 CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc6 CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6 CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
libc6 CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libcaca0 CVE-2026-42046 中危 0.99.beta20-3 libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42046

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 22:22 修改: 2026-05-13 18:31
cups-filters CVE-2025-64524 中危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups-filters: cups-filters: Heap buffer overflow in rastertopclx filter may lead arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64524

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-20 18:15 修改: 2025-12-15 14:35
chromium CVE-2026-12469 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: Google Chrome on Android: Cross-origin data leakage due to uninitialized use

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12469

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cups-filters-core-drivers CVE-2025-64524 中危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups-filters: cups-filters: Heap buffer overflow in rastertopclx filter may lead arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64524

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-20 18:15 修改: 2025-12-15 14:35
libcjson1 CVE-2023-53154 中危 1.7.15-1+deb12u2 1.7.15-1+deb12u3 cjson: Heap based buffer overflow at cJSON_ParseWithLength function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-53154

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-23 16:15 修改: 2025-11-03 20:16
bsdutils CVE-2026-27456 中危 1:2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libcups2 CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
libcups2 CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
libcups2 CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
libcups2 CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
libcups2 CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libcups2 CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
libcups2 CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
libcups2 CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
libcups2 CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
cups-ipp-utils CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
libcupsfilters1 CVE-2025-64524 中危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups-filters: cups-filters: Heap buffer overflow in rastertopclx filter may lead arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64524

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-20 18:15 修改: 2025-12-15 14:35
cups-ipp-utils CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
cups-ipp-utils CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
libcurl3-gnutls CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
libcurl3-gnutls CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libcurl3-gnutls CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
libcurl3-gnutls CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libcurl3-gnutls CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
libcurl3-gnutls CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
libcurl3-gnutls CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
libcurl3-gnutls CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
cups-ipp-utils CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
cups-ipp-utils CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libcurl4 CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
libcurl4 CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libcurl4 CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
libcurl4 CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libcurl4 CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
libcurl4 CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
libcurl4 CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
libcurl4 CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
libdav1d6 CVE-2023-32570 中危 1.0.0-2+deb12u1 VideoLAN dav1d before 1.2.0 has a thread_task.c race condition that ca ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32570

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-10 05:15 修改: 2025-01-28 16:15
cups-ipp-utils CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
libde265-0 CVE-2023-51792 中危 1.0.11-1+deb12u2 Buffer Overflow vulnerability in libde265 v1.0.12 allows a local attac ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51792

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2026-04-15 00:35
libde265-0 CVE-2024-38949 中危 1.0.11-1+deb12u2 Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attacker ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38949

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-06-26 20:15 修改: 2025-06-06 17:15
libde265-0 CVE-2024-38950 中危 1.0.11-1+deb12u2 Heap Buffer Overflow vulnerability in Libde265 v1.0.15 allows attacker ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38950

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-06-26 20:15 修改: 2025-06-06 17:15
libde265-0 CVE-2026-33165 中危 1.0.11-1+deb12u2 libde265 is an open source implementation of the h.265 video codec. Pr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33165

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 21:17 修改: 2026-03-23 20:09
libduktape207 CVE-2026-12216 中危 2.7.0-2 Duktape: svaarala duktape duk_api_bytecode.c memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12216

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-15 04:16 修改: 2026-06-15 20:42
cups-ipp-utils CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
cups-ipp-utils CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
cups-ipp-utils CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
bsdutils CVE-2026-3184 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
cups-ppdc CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
cups-ppdc CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
cups-ppdc CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
cups-ppdc CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
libexpat1 CVE-2024-50602 中危 2.5.0-1+deb12u1 2.5.0-1+deb12u2 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-27 05:15 修改: 2025-10-15 17:54
libexpat1 CVE-2024-8176 中危 2.5.0-1+deb12u1 2.5.0-1+deb12u2 libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-14 09:15 修改: 2026-04-15 00:35
libexpat1 CVE-2025-66382 中危 2.5.0-1+deb12u1 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
libexpat1 CVE-2026-32776 中危 2.5.0-1+deb12u1 libexpat: libexpat: Denial of Service due to NULL pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1 CVE-2026-32777 中危 2.5.0-1+deb12u1 libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1 CVE-2026-32778 中危 2.5.0-1+deb12u1 libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-16 14:19 修改: 2026-03-17 15:52
libexpat1 CVE-2026-50219 中危 2.5.0-1+deb12u1 expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-04 06:16 修改: 2026-06-04 18:39
libfdisk1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libfdisk1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
cups-ppdc CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libfontembed1 CVE-2025-64524 中危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups-filters: cups-filters: Heap buffer overflow in rastertopclx filter may lead arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64524

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-20 18:15 修改: 2025-12-15 14:35
cups-ppdc CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
libgcrypt20 CVE-2026-41989 中危 1.10.1-3 1.10.1-3+deb12u1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
cups-ppdc CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
libgdk-pixbuf-2.0-0 CVE-2025-7345 中危 2.42.10+dfsg-1+deb12u2 2.42.10+dfsg-1+deb12u3 gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7345

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-08 14:15 修改: 2026-04-15 00:35
cups-ppdc CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
libgdk-pixbuf2.0-common CVE-2025-7345 中危 2.42.10+dfsg-1+deb12u2 2.42.10+dfsg-1+deb12u3 gdk‑pixbuf: Heap‑buffer‑overflow in gdk‑pixbuf

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7345

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-08 14:15 修改: 2026-04-15 00:35
cups-ppdc CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
bsdextrautils CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
cups-server-common CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
cups-server-common CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
cups-server-common CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
libglib2.0-0 CVE-2025-13601 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer overflow in in g_escape_uri_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-26 15:15 修改: 2026-06-02 14:16
libglib2.0-0 CVE-2025-14512 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-11 07:16 修改: 2026-06-10 18:16
libglib2.0-0 CVE-2025-4373 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4373

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-06 15:16 修改: 2026-05-12 13:17
libglib2.0-0 CVE-2026-1484 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-06-02 14:16
libglib2.0-0 CVE-2026-1489 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: GLib: Memory corruption via integer overflow in Unicode case conversion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 15:15 修改: 2026-06-02 14:16
cups-server-common CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
libglib2.0-bin CVE-2025-13601 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer overflow in in g_escape_uri_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-26 15:15 修改: 2026-06-02 14:16
libglib2.0-bin CVE-2025-14512 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-11 07:16 修改: 2026-06-10 18:16
libglib2.0-bin CVE-2025-4373 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4373

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-06 15:16 修改: 2026-05-12 13:17
libglib2.0-bin CVE-2026-1484 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-06-02 14:16
libglib2.0-bin CVE-2026-1489 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: GLib: Memory corruption via integer overflow in Unicode case conversion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 15:15 修改: 2026-06-02 14:16
cups-server-common CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
libglib2.0-data CVE-2025-13601 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer overflow in in g_escape_uri_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-26 15:15 修改: 2026-06-02 14:16
libglib2.0-data CVE-2025-14512 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u8 glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-11 07:16 修改: 2026-06-10 18:16
libglib2.0-data CVE-2025-4373 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4373

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-06 15:16 修改: 2026-05-12 13:17
libglib2.0-data CVE-2026-1484 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1484

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-06-02 14:16
libglib2.0-data CVE-2026-1489 中危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: GLib: Memory corruption via integer overflow in Unicode case conversion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 15:15 修改: 2026-06-02 14:16
cups-server-common CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
cups-server-common CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
cups-server-common CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
cups-server-common CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
bsdextrautils CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
chromium-common CVE-2026-12444 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Out of bounds read in Chromoting

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12444

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl CVE-2026-1965 中危 7.88.1-10+deb12u14 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
curl CVE-2026-3783 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libgnutls-dane0 CVE-2025-14831 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u6 gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
libgnutls-dane0 CVE-2025-32989 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS SCT extension parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls-dane0 CVE-2025-6395 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-07-10 16:15 修改: 2026-05-12 13:17
libgnutls-dane0 CVE-2026-42011 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-42012 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-42013 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-42014 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-16 02:16 修改: 2026-06-16 15:26
libgnutls-dane0 CVE-2026-42015 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls-dane0 CVE-2026-5260 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
curl CVE-2026-3784 中危 7.88.1-10+deb12u14 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
curl CVE-2026-4873 中危 7.88.1-10+deb12u14 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
curl CVE-2026-5545 中危 7.88.1-10+deb12u14 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
curl CVE-2026-6253 中危 7.88.1-10+deb12u14 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
curl CVE-2026-6429 中危 7.88.1-10+deb12u14 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
curl CVE-2026-7168 中危 7.88.1-10+deb12u14 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
chromium-common CVE-2026-12446 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient data validation in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12446

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30 CVE-2025-14831 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u6 gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
libgnutls30 CVE-2025-32989 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: Vulnerability in GnuTLS SCT extension parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls30 CVE-2025-6395 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u5 gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-07-10 16:15 修改: 2026-05-12 13:17
libgnutls30 CVE-2026-42011 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-42012 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-42013 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-42014 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-16 02:16 修改: 2026-06-16 15:26
libgnutls30 CVE-2026-42015 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30 CVE-2026-5260 中危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgraphite2-3 CVE-2026-50593 中危 1.3.14-1 Graphite before 1.3.15 has an integer underflow and resultant out-of-b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50593

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 04:17 修改: 2026-06-05 16:06
libgs-common CVE-2025-59798 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via stack-based buffer overflow in pdf_write_cmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59798

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgs-common CVE-2025-59799 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: From CVEorg collector

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59799

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgs10 CVE-2025-59798 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via stack-based buffer overflow in pdf_write_cmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59798

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgs10 CVE-2025-59799 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: From CVEorg collector

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59799

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgs10-common CVE-2025-59798 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via stack-based buffer overflow in pdf_write_cmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59798

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgs10-common CVE-2025-59799 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: From CVEorg collector

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59799

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
libgssapi-krb5-2 CVE-2025-3576 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u4 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libgssapi-krb5-2 CVE-2026-40355 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
libgssapi-krb5-2 CVE-2026-40356 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
dirmngr CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libgstreamer-plugins-base1.0-0 CVE-2025-47806 中危 1.22.0-3+deb12u4 1.22.0-3+deb12u5 gstreamer1-plugins-base: GStreamer Subparse Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47806

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 20:15 修改: 2026-03-17 15:52
libgstreamer-plugins-base1.0-0 CVE-2025-47807 中危 1.22.0-3+deb12u4 1.22.0-3+deb12u5 gstreamer1-plugins-base: GStreamer Subparse NULL Pointer Dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47807

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 20:15 修改: 2026-03-17 15:52
libgstreamer-plugins-base1.0-0 CVE-2025-47808 中危 1.22.0-3+deb12u4 1.22.0-3+deb12u5 gstreamer1-plugins-base: GStreamer Subparse NULL Pointer Dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47808

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 20:15 修改: 2026-03-17 15:52
dirmngr CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libharfbuzz-subset0 CVE-2026-22693 中危 6.0.0+dfsg-3 harfbuzz: Null Pointer Dereference in harfbuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-10 06:15 修改: 2026-02-18 17:49
chromium-common CVE-2026-12450 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Media

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libharfbuzz0b CVE-2026-22693 中危 6.0.0+dfsg-3 harfbuzz: Null Pointer Dereference in harfbuzz

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-10 06:15 修改: 2026-02-18 17:49
chromium-common CVE-2026-12453 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12453

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12458 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Incorrect security UI in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12458

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium-common CVE-2026-12461 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Out of bounds read in WebRTC

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12461

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
exim4-base CVE-2026-40686 中危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when utf8 operators are enabled, there is an ou ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40686

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:44
exim4-base CVE-2026-48840 中危 4.96-15+deb12u7 4.96-15+deb12u10 Exim 4.88 before 4.99.4, in some proxy configurations, mishandles cert ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48840

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-30 02:16 修改: 2026-06-05 11:16
libheif1 CVE-2026-32738 中危 1.15.1-1+deb12u1 libheif: libheif: Unsigned integer underflow leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32738

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 19:16 修改: 2026-05-20 14:17
libheif1 CVE-2026-32739 中危 1.15.1-1+deb12u1 libheif: libheif: Denial of Service via crafted HEIF sequence file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32739

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 20:16 修改: 2026-05-20 14:17
libheif1 CVE-2026-32814 中危 1.15.1-1+deb12u1 libheif: libheif: Information Disclosure via Crafted HEIF/AVIF Files

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-19 21:16 修改: 2026-05-20 14:16
libheif1 CVE-2026-41069 中危 1.15.1-1+deb12u1 libheif is a HEIF and AVIF file format decoder and encoder. In version ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41069

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 21:16 修改: 2026-05-27 15:26
chromium-common CVE-2026-12469 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: Google Chrome on Android: Cross-origin data leakage due to uninitialized use

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12469

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chromium CVE-2026-12444 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Out of bounds read in Chromoting

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12444

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cups CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
libjq1 CVE-2026-33947 中危 1.6-2.1 jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33947

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 22:16 修改: 2026-04-21 23:57
libjq1 CVE-2026-33948 中危 1.6-2.1 jq: jq: Input validation bypass via embedded NUL bytes allows parser differential attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33948

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-14 00:16 修改: 2026-04-21 23:48
libjq1 CVE-2026-39956 中危 1.6-2.1 jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39956

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 23:16 修改: 2026-04-21 23:54
libjq1 CVE-2026-39979 中危 1.6-2.1 jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39979

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 23:16 修改: 2026-04-23 16:50
libjq1 CVE-2026-41256 中危 1.6-2.1 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
libjq1 CVE-2026-41257 中危 1.6-2.1 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
libjq1 CVE-2026-43894 中危 1.6-2.1 jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43894

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
libjq1 CVE-2026-43895 中危 1.6-2.1 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:02
libjq1 CVE-2026-43896 中危 1.6-2.1 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 22:34
libjq1 CVE-2026-44777 中危 1.6-2.1 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:05
libjxl0.7 CVE-2025-12474 中危 0.7.0-10+deb12u1 libjxl: libjxl: Uninitialized memory read in decoder due to incorrect optimization in patch handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12474

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-11 16:15 修改: 2026-04-24 16:42
libjxl0.7 CVE-2025-70103 中危 0.7.0-10+deb12u1 Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM im ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70103

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 15:16 修改: 2026-05-30 20:16
libk5crypto3 CVE-2025-3576 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u4 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libk5crypto3 CVE-2026-40355 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
libk5crypto3 CVE-2026-40356 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
libkrb5-3 CVE-2025-3576 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u4 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libkrb5-3 CVE-2026-40355 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
libkrb5-3 CVE-2026-40356 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
libkrb5support0 CVE-2025-3576 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u4 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libkrb5support0 CVE-2026-40355 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
libkrb5support0 CVE-2026-40356 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
cups CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
exim4-config CVE-2026-40686 中危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when utf8 operators are enabled, there is an ou ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40686

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:44
exim4-config CVE-2026-48840 中危 4.96-15+deb12u7 4.96-15+deb12u10 Exim 4.88 before 4.99.4, in some proxy configurations, mishandles cert ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48840

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-30 02:16 修改: 2026-06-05 11:16
liblzma5 CVE-2026-34743 中危 5.4.1-1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
cups CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
cups CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
cups CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
exim4-daemon-light CVE-2026-40686 中危 4.96-15+deb12u7 4.96-15+deb12u9 In Exim before 4.99.2, when utf8 operators are enabled, there is an ou ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40686

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-30 22:16 修改: 2026-05-01 17:44
exim4-daemon-light CVE-2026-48840 中危 4.96-15+deb12u7 4.96-15+deb12u10 Exim 4.88 before 4.99.4, in some proxy configurations, mishandles cert ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48840

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-30 02:16 修改: 2026-06-05 11:16
cups CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
cups CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
libmbedcrypto7 CVE-2024-23170 中危 2.28.3-1 An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23170

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-01-31 08:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2024-28960 中危 2.28.3-1 mbedtls: Insecure handling of shared memory in PSA Crypto APIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28960

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-29 06:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2025-27809 中危 2.28.3-1 Mbed TLS before 2.28.10 and 3.x before 3.6.3, on the client side, acce ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27809

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-25 06:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2025-27810 中危 2.28.3-1 Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27810

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-25 06:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2025-52497 中危 2.28.3-1 Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer und ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52497

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-04 15:15 修改: 2025-11-03 20:19
libmbedcrypto7 CVE-2025-54764 中危 2.28.3-1 Mbed TLS before 3.6.5 allows a local timing attack against certain RSA ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-54764

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-20 22:15 修改: 2025-10-31 15:09
libmbedcrypto7 CVE-2025-59438 中危 2.28.3-1 Mbed TLS through 3.6.4 has an Observable Timing Discrepancy.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-21 15:15 修改: 2025-10-23 12:35
cups CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
libmfx1 CVE-2023-47169 中危 22.5.4-1 Improper buffer restrictions in Intel(R) Media SDK software all versio ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47169

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:16 修改: 2025-08-27 16:06
libmfx1 CVE-2023-48368 中危 22.5.4-1 Improper input validation in Intel(R) Media SDK software all versions ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:16 修改: 2025-08-27 16:07
libmount1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libmount1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
chromium CVE-2026-12446 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient data validation in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12446

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libncursesw6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
ffmpeg CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libnss3 CVE-2023-5388 中危 2:3.87.1-1+deb12u2 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2024-03-19 12:15 修改: 2025-11-04 19:16
libnss3 CVE-2023-6135 中危 2:3.87.1-1+deb12u2 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2023-12-19 14:15 修改: 2024-11-21 08:43
libnss3 CVE-2024-7531 中危 2:3.87.1-1+deb12u2 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2024-08-06 13:15 修改: 2025-03-19 16:15
libnss3 CVE-2026-6766 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6766

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-21 13:16 修改: 2026-04-22 14:57
libnss3 CVE-2026-6767 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Other issue in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6767

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-21 13:16 修改: 2026-04-22 17:37
libnss3 CVE-2026-6772 中危 2:3.87.1-1+deb12u2 firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6772

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-21 13:16 修改: 2026-04-22 16:04
libopenjp2-7 CVE-2023-39328 中危 2.5.0-2+deb12u1 openjpeg: denail of service via crafted image file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39328

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-09 14:15 修改: 2025-08-18 16:45
libopenjp2-7 CVE-2023-39329 中危 2.5.0-2+deb12u1 openjpeg: Resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39329

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-13 03:15 修改: 2026-03-09 19:15
libopenjp2-7 CVE-2025-50952 中危 2.5.0-2+deb12u1 2.5.0-2+deb12u2 openjpeg: Openjpeg NULL pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50952

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 15:15 修改: 2025-12-29 17:15
liborc-0.4-0 CVE-2024-40897 中危 1:0.4.33-2 orc: Stack-based buffer overflow vulnerability in ORC

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-40897

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-26 06:15 修改: 2024-11-21 09:31
ffmpeg CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
ffmpeg CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libpam-modules CVE-2024-10041 中危 1.5.2-6+deb12u1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules CVE-2024-22365 中危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
libpam-modules CVE-2026-54411 中危 1.5.2-6+deb12u1 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
ffmpeg CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libpam-modules-bin CVE-2024-10041 中危 1.5.2-6+deb12u1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin CVE-2024-22365 中危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
libpam-modules-bin CVE-2026-54411 中危 1.5.2-6+deb12u1 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
ffmpeg CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libpam-runtime CVE-2024-10041 中危 1.5.2-6+deb12u1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime CVE-2024-22365 中危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
libpam-runtime CVE-2026-54411 中危 1.5.2-6+deb12u1 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
libpam-systemd CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libpam-systemd CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libpam-systemd CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libpam-systemd CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
ffmpeg CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libpam0g CVE-2024-10041 中危 1.5.2-6+deb12u1 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g CVE-2024-22365 中危 1.5.2-6+deb12u1 1.5.2-6+deb12u2 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-02-06 08:15 修改: 2026-05-12 12:16
libpam0g CVE-2026-54411 中危 1.5.2-6+deb12u1 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-14 18:17 修改: 2026-06-16 15:36
ffmpeg CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
ffmpeg CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
ffmpeg CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
ffmpeg CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
ffmpeg CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
ffmpeg CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libperl5.36 CVE-2025-15649 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libperl5.36 CVE-2025-40909 中危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: Perl threads have a working directory race condition where file operations may target unintended paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
libperl5.36 CVE-2026-12087 中危 5.36.0-7+deb12u2 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-15 22:16 修改: 2026-06-16 17:16
libperl5.36 CVE-2026-48959 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libperl5.36 CVE-2026-48961 中危 5.36.0-7+deb12u2 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
libperl5.36 CVE-2026-7010 中危 5.36.0-7+deb12u2 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
ffmpeg CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
ffmpeg CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
ffmpeg CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
ffmpeg CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
ffmpeg CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
ffmpeg CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libpng16-16 CVE-2025-64505 中危 1.6.39-2 1.6.39-2+deb12u1 libpng: LIBPNG heap buffer overflow via malformed palette index

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:28
libpng16-16 CVE-2025-64506 中危 1.6.39-2 1.6.39-2+deb12u1 libpng: LIBPNG heap buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
libpng16-16 CVE-2026-33416 中危 1.6.39-2 1.6.39-2+deb12u4 libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 17:16 修改: 2026-04-02 20:28
libpng16-16 CVE-2026-33636 中危 1.6.39-2 1.6.39-2+deb12u4 libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 17:16 修改: 2026-04-02 18:42
libpng16-16 CVE-2026-34757 中危 1.6.39-2 1.6.39-2+deb12u5 libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-09 15:16 修改: 2026-05-13 23:07
libpolkit-agent-1-0 CVE-2026-4897 中危 122-3 polkit: Polkit: Denial of Service via unbounded input processing through standard input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4897

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 15:16 修改: 2026-04-21 16:29
libpolkit-gobject-1-0 CVE-2026-4897 中危 122-3 polkit: Polkit: Denial of Service via unbounded input processing through standard input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4897

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 15:16 修改: 2026-04-21 16:29
ffmpeg CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libpoppler-cpp0v5 CVE-2025-43718 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Poppler stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43718

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-01 19:15 修改: 2026-04-15 00:35
libpoppler-cpp0v5 CVE-2025-50420 中危 22.12.0-2+deb12u1 An issue in the pdfseparate utility of freedesktop poppler v25.04.0 al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50420

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-04 17:15 修改: 2025-10-09 17:43
libpoppler-cpp0v5 CVE-2025-52885 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Use-After-Free in StructTreeRoot class

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52885

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-10 23:15 修改: 2026-04-15 00:35
libpoppler-cpp0v5 CVE-2025-52886 中危 22.12.0-2+deb12u1 poppler: Poppler Use After Free Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52886

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-02 16:15 修改: 2025-11-04 22:16
ffmpeg CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libpoppler126 CVE-2025-43718 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Poppler stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43718

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-01 19:15 修改: 2026-04-15 00:35
libpoppler126 CVE-2025-50420 中危 22.12.0-2+deb12u1 An issue in the pdfseparate utility of freedesktop poppler v25.04.0 al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50420

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-04 17:15 修改: 2025-10-09 17:43
libpoppler126 CVE-2025-52885 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Use-After-Free in StructTreeRoot class

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52885

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-10 23:15 修改: 2026-04-15 00:35
libpoppler126 CVE-2025-52886 中危 22.12.0-2+deb12u1 poppler: Poppler Use After Free Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52886

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-02 16:15 修改: 2025-11-04 22:16
ffmpeg CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
ffmpeg CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ffmpeg CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
ffmpeg CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
libpostproc56 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libpostproc56 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libpostproc56 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libpostproc56 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libpostproc56 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libpostproc56 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libpostproc56 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libpostproc56 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libpostproc56 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libpostproc56 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libpostproc56 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libpostproc56 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libpostproc56 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libpostproc56 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libpostproc56 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libpostproc56 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libpostproc56 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libpostproc56 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libpostproc56 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libpostproc56 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libpostproc56 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libpostproc56 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpostproc56 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libpostproc56 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
ghostscript CVE-2025-59798 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via stack-based buffer overflow in pdf_write_cmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59798

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
ghostscript CVE-2025-59799 中危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 Artifex Ghostscript: From CVEorg collector

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59799

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-11-03 18:17
cups-client CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
cups-client CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
gnupg CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gnupg CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libpython3.11-minimal CVE-2025-11468 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Missing character filtering in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-12084 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
libpython3.11-minimal CVE-2025-12781 中危 3.11.2-6+deb12u6 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
libpython3.11-minimal CVE-2025-13837 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Out-of-memory when loading Plist

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
libpython3.11-minimal CVE-2025-15282 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection via newlines in data URL mediatype in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-15366 中危 3.11.2-6+deb12u6 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-15367 中危 3.11.2-6+deb12u6 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-4516 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: CPython DecodeError Handling Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-6069 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Python HTMLParser quadratic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-6075 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 python: Quadratic complexity in os.path.expandvars() with user-controlled template

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
libpython3.11-minimal CVE-2025-8194 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Cpython infinite loop when parsing a tarfile

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2025-8291 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2026-0672 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection in http.cookies.Morsel in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2026-0865 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: wsgiref.headers.Headers allows header newline injection in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2026-1299 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
libpython3.11-minimal CVE-2026-1502 中危 3.11.2-6+deb12u6 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
libpython3.11-minimal CVE-2026-3276 中危 3.11.2-6+deb12u6 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
libpython3.11-minimal CVE-2026-3446 中危 3.11.2-6+deb12u6 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 19:16 修改: 2026-04-13 17:16
libpython3.11-minimal CVE-2026-6019 中危 3.11.2-6+deb12u6 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
libpython3.11-minimal CVE-2026-7774 中危 3.11.2-6+deb12u6 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
libpython3.11-minimal CVE-2026-8328 中危 3.11.2-6+deb12u6 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
libpython3.11-minimal CVE-2026-9669 中危 3.11.2-6+deb12u6 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
cups-client CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
gnupg-l10n CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gnupg-l10n CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-client CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
gnupg-utils CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gnupg-utils CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libpython3.11-stdlib CVE-2025-11468 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Missing character filtering in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-12084 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
libpython3.11-stdlib CVE-2025-12781 中危 3.11.2-6+deb12u6 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
libpython3.11-stdlib CVE-2025-13837 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Out-of-memory when loading Plist

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
libpython3.11-stdlib CVE-2025-15282 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection via newlines in data URL mediatype in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-15366 中危 3.11.2-6+deb12u6 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-15367 中危 3.11.2-6+deb12u6 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-4516 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: CPython DecodeError Handling Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-6069 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Python HTMLParser quadratic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-6075 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 python: Quadratic complexity in os.path.expandvars() with user-controlled template

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
libpython3.11-stdlib CVE-2025-8194 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Cpython infinite loop when parsing a tarfile

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2025-8291 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2026-0672 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection in http.cookies.Morsel in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2026-0865 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: wsgiref.headers.Headers allows header newline injection in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2026-1299 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
libpython3.11-stdlib CVE-2026-1502 中危 3.11.2-6+deb12u6 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
libpython3.11-stdlib CVE-2026-3276 中危 3.11.2-6+deb12u6 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
libpython3.11-stdlib CVE-2026-3446 中危 3.11.2-6+deb12u6 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 19:16 修改: 2026-04-13 17:16
libpython3.11-stdlib CVE-2026-6019 中危 3.11.2-6+deb12u6 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
libpython3.11-stdlib CVE-2026-7774 中危 3.11.2-6+deb12u6 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
libpython3.11-stdlib CVE-2026-8328 中危 3.11.2-6+deb12u6 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
libpython3.11-stdlib CVE-2026-9669 中危 3.11.2-6+deb12u6 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
libqpdf29 CVE-2024-24246 中危 11.3.0-1+deb12u1 qpdf: Heap Buffer Overflow vulnerability in qpdf

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24246

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-29 20:15 修改: 2025-11-04 22:15
librabbitmq4 CVE-2026-44235 中危 0.11.0-1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44235

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
librabbitmq4 CVE-2026-44236 中危 0.11.0-1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44236

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsmartcols1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libsmartcols1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
cups-client CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
gpg CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libsndfile1 CVE-2024-50612 中危 1.2.0-1 1.2.0-1+deb12u1 libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50612

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-27 22:15 修改: 2024-11-05 16:14
libsndfile1 CVE-2024-50613 中危 1.2.0-1 libsndfile: Reachable assertion in mpeg_l3_encoder_close

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50613

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-27 22:15 修改: 2024-10-31 00:58
libsndfile1 CVE-2025-56226 中危 1.2.0-1 libsndfile: memory leak when encoding MP3 files due to an incomplete initialization

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-56226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-14 15:15 修改: 2026-01-21 21:21
libsodium23 CVE-2025-69277 中危 1.0.18-1 1.0.18-1+deb12u1 libsodium: pynacl: libsodium: Improper validation of elliptic curve points could lead to data integrity or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69277

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-31 06:15 修改: 2026-04-15 00:35
gpg CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-client CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
gpg-agent CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gpg-agent CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
libsqlite3-0 CVE-2025-7709 中危 3.40.1-2+deb12u1 An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-09-08 15:15 修改: 2026-04-15 00:35
cups-client CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
gpg-wks-client CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gpg-wks-client CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-client CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
gpg-wks-server CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libssh-gcrypt-4 CVE-2025-4877 中危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Write beyond bounds in binary to base64 conversion functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4877

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-20 13:15 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2025-5351 中危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Double Free Vulnerability in libssh Key Export Functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5351

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-04 09:15 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2025-8114 中危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: NULL Pointer Dereference in libssh KEX Session ID Calculation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8114

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-24 15:15 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2026-0964 中危 0.10.6-0+deb12u1 libssh: Improper sanitation of paths received from SCP servers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0964

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2026-0967 中危 0.10.6-0+deb12u1 libssh: libssh: Denial of Service via inefficient regular expression processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0967

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
gpg-wks-server CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-client CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
gpgconf CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gpgconf CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
chromium CVE-2026-12450 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Inappropriate implementation in Media

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpgsm CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gpgsm CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-common CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
gpgv CVE-2025-30258 中危 2.2.40-1.1 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libssl3 CVE-2025-69419 中危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2025-9230 中危 3.0.16-1~deb12u1 3.0.17-1~deb12u3 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
libssl3 CVE-2026-31790 中危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-34182 中危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
libssl3 CVE-2026-45445 中危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
gpgv CVE-2025-68972 中危 2.2.40-1.1 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
cups-common CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
cups-common CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
cups-common CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
libswresample4 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libswresample4 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libswresample4 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libswresample4 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libswresample4 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswresample4 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libswresample4 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswresample4 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswresample4 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libswresample4 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libswresample4 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libswresample4 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libswresample4 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libswresample4 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libswresample4 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libswresample4 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libswresample4 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libswresample4 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libswresample4 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libswresample4 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libswresample4 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libswresample4 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswresample4 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libswresample4 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
jq CVE-2026-33947 中危 1.6-2.1 jq: unbounded Recursion in jv_setpath() / jv_getpath() / delpaths_sorted()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33947

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 22:16 修改: 2026-04-21 23:57
jq CVE-2026-33948 中危 1.6-2.1 jq: jq: Input validation bypass via embedded NUL bytes allows parser differential attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33948

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-14 00:16 修改: 2026-04-21 23:48
jq CVE-2026-39956 中危 1.6-2.1 jq: missing runtime type checks for _strindices lead to crash and limited memory disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39956

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 23:16 修改: 2026-04-21 23:54
jq CVE-2026-39979 中危 1.6-2.1 jq: out-of-bounds read in jv_parse_sized() on error formatting for non-NUL-terminated buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39979

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-13 23:16 修改: 2026-04-23 16:50
libswscale6 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libswscale6 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libswscale6 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libswscale6 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libswscale6 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswscale6 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libswscale6 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswscale6 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libswscale6 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libswscale6 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libswscale6 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libswscale6 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libswscale6 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libswscale6 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libswscale6 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libswscale6 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libswscale6 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libswscale6 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libswscale6 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libswscale6 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libswscale6 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libswscale6 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswscale6 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libswscale6 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
libsystemd-shared CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libsystemd-shared CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libsystemd-shared CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libsystemd-shared CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
libsystemd0 CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libsystemd0 CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libsystemd0 CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libsystemd0 CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
jq CVE-2026-41256 中危 1.6-2.1 jq: embedded NUL truncates top-level jq programs loaded with -f

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41256

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
jq CVE-2026-41257 中危 1.6-2.1 jq: signed-int overflow in stack_reallocate

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41257

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
jq CVE-2026-43894 中危 1.6-2.1 jq: jq: Arbitrary Code Execution or Denial of Service via Signed Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43894

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:01
jq CVE-2026-43895 中危 1.6-2.1 jq: embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43895

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:02
libtiff6 CVE-2023-6277 中危 4.5.0-6+deb12u2 libtiff: Out-of-memory in TIFFOpen via a craft file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-11-24 19:15 修改: 2024-11-21 08:43
jq CVE-2026-43896 中危 1.6-2.1 jq: stack overflow in recursive object merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-43896

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 22:34
libtinfo6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libudev1 CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libudev1 CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libudev1 CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libudev1 CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
jq CVE-2026-44777 中危 1.6-2.1 jq: stack overflow in module loading on mutual include

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44777

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:05
krb5-locales CVE-2025-3576 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u4 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
krb5-locales CVE-2026-40355 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 06:16 修改: 2026-04-28 20:11
krb5-locales CVE-2026-40356 中危 1.20.1-2+deb12u3 1.20.1-2+deb12u5 krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-28 07:16 修改: 2026-04-28 20:11
cups-common CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
cups-common CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
cups-common CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
libunbound8 CVE-2024-8508 中危 1.17.1-2+deb12u2 1.17.1-2+deb12u3 unbound: Unbounded name compression could lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8508

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-10-03 17:15 修改: 2024-12-17 19:28
libunbound8 CVE-2025-11411 中危 1.17.1-2+deb12u2 1.17.1-2+deb12u4 unbound: Unbound domain hijacking via promiscuous records

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11411

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-10-22 13:15 修改: 2026-04-15 00:35
libunbound8 CVE-2026-42534 中危 1.17.1-2+deb12u2 NLnet Labs Unbound up to and including version 1.25.0 has a vulnerabil ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42534

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:50
libunbound8 CVE-2026-42923 中危 1.17.1-2+deb12u2 unbound: Unbound DNSSEC Validator NSEC3 Hash Calculation Limit Bypass via Negative Cache Code Path Leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42923

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:50
libunbound8 CVE-2026-44390 中危 1.17.1-2+deb12u2 NLnet Labs Unbound up to and including version 1.25.0 has a vulnerabil ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44390

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:52
libunbound8 CVE-2026-44608 中危 1.17.1-2+deb12u2 unbound: Unbound: Denial of Service due to locking inconsistency during RPZ XFR reload

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44608

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:52
libusb-1.0-0 CVE-2026-23679 中危 2:1.0.26-1 libusb: libusb: Denial of Service via malformed USB configuration descriptor

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 14:16 修改: 2026-05-28 17:16
libusb-1.0-0 CVE-2026-47104 中危 2:1.0.26-1 libusb: libusb: Denial of Service via malformed USB descriptor

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47104

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 14:17 修改: 2026-05-28 15:40
libuuid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libuuid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
cups-common CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
cups-common CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
chromium CVE-2026-12453 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Insufficient validation of untrusted input in Input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12453

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libxml2 CVE-2025-6021 中危 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u3 libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-12 13:15 修改: 2026-05-12 13:17
libxml2 CVE-2025-9714 中危 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u5 libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9714

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-10 19:15 修改: 2026-05-12 13:17
libxml2 CVE-2026-0990 中危 2.9.14+dfsg-1.3~deb12u2 libxml2: libxml2: Denial of Service via uncontrolled recursion in XML catalog processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0990

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxml2 CVE-2026-6653 中危 2.9.14+dfsg-1.3~deb12u2

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6653

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libxpm4 CVE-2026-4367 中危 1:3.5.12-1.1+deb12u1 libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-16 19:16 修改: 2026-06-16 20:42
libasound2 CVE-2026-25068 中危 1.2.8-1+b1 alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-29 20:16 修改: 2026-04-15 00:35
libasound2-data CVE-2026-25068 中危 1.2.8-1 alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-29 20:16 修改: 2026-04-15 00:35
libavahi-client3 CVE-2024-52615 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libzvbi-common CVE-2025-2175 中危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been rated a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2175

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:23
libzvbi-common CVE-2025-2177 中危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability classified as critical was found in libzvbi up to 0.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2177

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 08:15 修改: 2025-10-10 20:14
libavahi-client3 CVE-2024-52616 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libavahi-client3 CVE-2025-59529 中危 0.8-10+deb12u1 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 21:15 修改: 2026-01-16 16:50
libavahi-client3 CVE-2025-68276 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:51
libzvbi0 CVE-2025-2175 中危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability was found in libzvbi up to 0.2.43. It has been rated a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2175

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 07:15 修改: 2025-10-03 00:23
libzvbi0 CVE-2025-2177 中危 0.2.41-1 0.2.41-1+deb12u1 A vulnerability classified as critical was found in libzvbi up to 0.2. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-2177

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-11 08:15 修改: 2025-10-10 20:14
locales CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
locales CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
locales-all CVE-2026-5435 中危 2.36-9+deb12u14 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
locales-all CVE-2026-5450 中危 2.36-9+deb12u14 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales-all CVE-2026-5928 中危 2.36-9+deb12u14 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
locales-all CVE-2026-6238 中危 2.36-9+deb12u14 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libavahi-client3 CVE-2025-68468 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:52
libavahi-client3 CVE-2025-68471 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via unsolicited CNAME announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68471

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:53
mount CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
mount CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
libavahi-client3 CVE-2026-24401 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24401

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-24 02:15 修改: 2026-02-12 15:58
ncurses-base CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libavahi-client3 CVE-2026-34933 中危 0.8-10+deb12u1 avahi: avahi-daemon: Avahi: Denial of Service via D-Bus method call

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34933

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 23:17 修改: 2026-04-13 17:26
ncurses-bin CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libavahi-common-data CVE-2024-52615 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libavahi-common-data CVE-2024-52616 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libavahi-common-data CVE-2025-59529 中危 0.8-10+deb12u1 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 21:15 修改: 2026-01-16 16:50
libavahi-common-data CVE-2025-68276 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:51
libavahi-common-data CVE-2025-68468 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:52
libavahi-common-data CVE-2025-68471 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via unsolicited CNAME announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68471

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:53
libavahi-common-data CVE-2026-24401 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24401

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-24 02:15 修改: 2026-02-12 15:58
nginx CVE-2026-1642 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u4 nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-04 15:16 修改: 2026-02-13 21:35
nginx CVE-2026-27784 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-30 13:59
nginx CVE-2026-40701 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: ngx_http_ssl_module: data corruption and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-13 16:27
nginx CVE-2026-42934 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: ngx_http_charset_module: information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-13 16:27
nginx CVE-2026-48142 中危 1.22.1-9+deb12u2 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavahi-common-data CVE-2026-34933 中危 0.8-10+deb12u1 avahi: avahi-daemon: Avahi: Denial of Service via D-Bus method call

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34933

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 23:17 修改: 2026-04-13 17:26
libavahi-common3 CVE-2024-52615 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Uses Constant Source Port

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libavahi-common3 CVE-2024-52616 中危 0.8-10+deb12u1 avahi: Avahi Wide-Area DNS Predictable Transaction IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-21 21:15 修改: 2026-04-15 00:35
libavahi-common3 CVE-2025-59529 中危 0.8-10+deb12u1 avahi: simple clients denial-of-service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 21:15 修改: 2026-01-16 16:50
libavahi-common3 CVE-2025-68276 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:51
libavahi-common3 CVE-2025-68468 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:52
libavahi-common3 CVE-2025-68471 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via unsolicited CNAME announcements

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68471

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-12 18:15 修改: 2026-01-16 16:53
nginx-common CVE-2026-1642 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u4 nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1642

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-04 15:16 修改: 2026-02-13 21:35
nginx-common CVE-2026-27784 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX: Denial of Service due to memory corruption via crafted MP4 file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27784

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-30 13:59
nginx-common CVE-2026-40701 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: ngx_http_ssl_module: data corruption and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40701

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-13 16:27
nginx-common CVE-2026-42934 中危 1.22.1-9+deb12u2 1.22.1-9+deb12u7 nginx: ngx_http_charset_module: information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42934

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 16:16 修改: 2026-05-13 16:27
nginx-common CVE-2026-48142 中危 1.22.1-9+deb12u2 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-21717 中危 18.20.6-1nodesource1 nodejs: v8: Node.js: Denial of Service via V8 string hashing mechanism due to predictable hash collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-21717

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-30 20:16 修改: 2026-05-10 14:16
libavahi-common3 CVE-2026-24401 中危 0.8-10+deb12u1 avahi: Avahi: Denial of Service via recursive CNAME record in mDNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24401

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-24 02:15 修改: 2026-02-12 15:58
libavahi-common3 CVE-2026-34933 中危 0.8-10+deb12u1 avahi: avahi-daemon: Avahi: Denial of Service via D-Bus method call

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34933

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-03 23:17 修改: 2026-04-13 17:26
cups-core-drivers CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
cups-core-drivers CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
openssh-client CVE-2025-61984 中危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u8 openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
openssh-client CVE-2025-61985 中危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u8 openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 19:15 修改: 2026-04-15 00:35
openssh-client CVE-2026-35387 中危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u10 OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:05
cups-core-drivers CVE-2026-27447 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27447

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:20
cups-core-drivers CVE-2026-34978 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via path traversal in RSS notifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34978

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:29
libavcodec59 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
libavcodec59 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libavcodec59 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavcodec59 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavcodec59 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavcodec59 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
openssl CVE-2025-69419 中危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2025-9230 中危 3.0.16-1~deb12u1 3.0.17-1~deb12u3 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
openssl CVE-2026-31790 中危 3.0.16-1~deb12u1 3.0.19-1~deb12u2 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl CVE-2026-34182 中危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
openssl CVE-2026-45445 中危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
libavcodec59 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavcodec59 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavcodec59 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libavcodec59 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libavcodec59 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavcodec59 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavcodec59 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
perl CVE-2025-15649 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl CVE-2025-40909 中危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: Perl threads have a working directory race condition where file operations may target unintended paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl CVE-2026-12087 中危 5.36.0-7+deb12u2 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-15 22:16 修改: 2026-06-16 17:16
perl CVE-2026-48959 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl CVE-2026-48961 中危 5.36.0-7+deb12u2 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl CVE-2026-7010 中危 5.36.0-7+deb12u2 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
libavcodec59 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
libavcodec59 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
libavcodec59 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
libavcodec59 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libavcodec59 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavcodec59 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
perl-base CVE-2025-15649 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-base CVE-2025-40909 中危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: Perl threads have a working directory race condition where file operations may target unintended paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-base CVE-2026-12087 中危 5.36.0-7+deb12u2 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-15 22:16 修改: 2026-06-16 17:16
perl-base CVE-2026-48959 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-base CVE-2026-48961 中危 5.36.0-7+deb12u2 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-base CVE-2026-7010 中危 5.36.0-7+deb12u2 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
libavcodec59 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libavcodec59 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libavcodec59 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavcodec59 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libavcodec59 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
cups-core-drivers CVE-2026-34979 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Denial of Service via heap-based buffer overflow in job attribute processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34979

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:28
perl-modules-5.36 CVE-2025-15649 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.36 CVE-2025-40909 中危 5.36.0-7+deb12u2 5.36.0-7+deb12u3 perl: Perl threads have a working directory race condition where file operations may target unintended paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
perl-modules-5.36 CVE-2026-12087 中危 5.36.0-7+deb12u2 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-15 22:16 修改: 2026-06-16 17:16
perl-modules-5.36 CVE-2026-48959 中危 5.36.0-7+deb12u2 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.36 CVE-2026-48961 中危 5.36.0-7+deb12u2 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
perl-modules-5.36 CVE-2026-7010 中危 5.36.0-7+deb12u2 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
polkitd CVE-2026-4897 中危 122-3 polkit: Polkit: Denial of Service via unbounded input processing through standard input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4897

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 15:16 修改: 2026-04-21 16:29
cups-core-drivers CVE-2026-34990 中危 2.4.2-3+deb12u9 cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34990

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-03 22:16 修改: 2026-04-16 18:15
poppler-utils CVE-2025-43718 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Poppler stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43718

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-01 19:15 修改: 2026-04-15 00:35
poppler-utils CVE-2025-50420 中危 22.12.0-2+deb12u1 An issue in the pdfseparate utility of freedesktop poppler v25.04.0 al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50420

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-04 17:15 修改: 2025-10-09 17:43
poppler-utils CVE-2025-52885 中危 22.12.0-2+deb12u1 22.12.0-2+deb12u2 poppler: Use-After-Free in StructTreeRoot class

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52885

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-10 23:15 修改: 2026-04-15 00:35
poppler-utils CVE-2025-52886 中危 22.12.0-2+deb12u1 poppler: Poppler Use After Free Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52886

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-02 16:15 修改: 2025-11-04 22:16
python-apt-common CVE-2025-6966 中危 2.6.0 python-apt: python-apt: NULL pointer dereference leads to local denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6966

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-05 13:16 修改: 2026-01-07 22:20
python3-apt CVE-2025-6966 中危 2.6.0 python-apt: python-apt: NULL pointer dereference leads to local denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6966

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-05 13:16 修改: 2026-01-07 22:20
cups-core-drivers CVE-2026-39314 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service via integer underflow in IPP attribute handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39314

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:13
python3-cryptography CVE-2026-26007 中危 38.0.4-3+deb12u1 cryptography: cryptography Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-10 22:17 修改: 2026-02-23 15:40
python3-cryptography CVE-2026-34073 中危 38.0.4-3+deb12u1 python-cryptography: Cryptography: Security bypass due to improper DNS name constraint validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34073

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-04-06 15:30
cups-core-drivers CVE-2026-39316 中危 2.4.2-3+deb12u9 cups: CUPS: Denial of Service and potential arbitrary code execution via use-after-free vulnerability when deleting temporary printers.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39316

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-07 17:16 修改: 2026-04-16 18:08
libavdevice59 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
python3-jwt CVE-2026-48522 中危 2.6.0-1 python-pyjwt: PyJWT: Server-Side Request Forgery (SSRF) via uncontrolled URL fetching in PyJWKClient

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48522

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-28 16:16 修改: 2026-06-02 17:16
python3-jwt CVE-2026-48523 中危 2.6.0-1 python-pyjwt: PyJWT: Verifier-side algorithm bypass leads to unauthorized information access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48523

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-28 16:16 修改: 2026-06-01 17:44
python3-jwt CVE-2026-48524 中危 2.6.0-1 python-pyjwt: PyJWT: Denial of Service via unverified JSON Web Token key IDs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48524

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-28 16:16 修改: 2026-06-01 17:44
python3-jwt CVE-2026-48525 中危 2.6.0-1 python-pyjwt: PyJWT: Denial of Service via processing of crafted detached JWS tokens

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48525

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-28 16:16 修改: 2026-06-01 17:45
libavdevice59 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libavdevice59 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavdevice59 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavdevice59 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavdevice59 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libavdevice59 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavdevice59 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
python3.11 CVE-2025-11468 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Missing character filtering in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-12084 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
python3.11 CVE-2025-12781 中危 3.11.2-6+deb12u6 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
python3.11 CVE-2025-13837 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Out-of-memory when loading Plist

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
python3.11 CVE-2025-15282 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection via newlines in data URL mediatype in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-15366 中危 3.11.2-6+deb12u6 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-15367 中危 3.11.2-6+deb12u6 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-4516 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: CPython DecodeError Handling Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-6069 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Python HTMLParser quadratic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-6075 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 python: Quadratic complexity in os.path.expandvars() with user-controlled template

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
python3.11 CVE-2025-8194 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Cpython infinite loop when parsing a tarfile

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
python3.11 CVE-2025-8291 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
python3.11 CVE-2026-0672 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection in http.cookies.Morsel in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2026-0865 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: wsgiref.headers.Headers allows header newline injection in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11 CVE-2026-1299 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
python3.11 CVE-2026-1502 中危 3.11.2-6+deb12u6 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
python3.11 CVE-2026-3276 中危 3.11.2-6+deb12u6 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
python3.11 CVE-2026-3446 中危 3.11.2-6+deb12u6 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 19:16 修改: 2026-04-13 17:16
python3.11 CVE-2026-6019 中危 3.11.2-6+deb12u6 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
python3.11 CVE-2026-7774 中危 3.11.2-6+deb12u6 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
python3.11 CVE-2026-8328 中危 3.11.2-6+deb12u6 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
python3.11 CVE-2026-9669 中危 3.11.2-6+deb12u6 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
libavdevice59 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libavdevice59 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libavdevice59 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavdevice59 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavdevice59 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libavdevice59 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
python3.11-minimal CVE-2025-11468 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Missing character filtering in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-12084 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
python3.11-minimal CVE-2025-12781 中危 3.11.2-6+deb12u6 cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 20:16 修改: 2026-02-02 17:25
python3.11-minimal CVE-2025-13837 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Out-of-memory when loading Plist

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-01 18:16 修改: 2026-03-03 15:16
python3.11-minimal CVE-2025-15282 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection via newlines in data URL mediatype in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-15366 中危 3.11.2-6+deb12u6 cpython: IMAP command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-15367 中危 3.11.2-6+deb12u6 cpython: POP3 command injection in user-controlled commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-4516 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: CPython DecodeError Handling Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-15 14:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-6069 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Python HTMLParser quadratic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-17 14:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-6075 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 python: Quadratic complexity in os.path.expandvars() with user-controlled template

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-31 17:15 修改: 2026-02-04 19:05
python3.11-minimal CVE-2025-8194 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Cpython infinite loop when parsing a tarfile

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-28 19:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-8291 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-07 18:16 修改: 2026-04-15 00:35
python3.11-minimal CVE-2026-0672 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: Header injection in http.cookies.Morsel in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2026-0865 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: wsgiref.headers.Headers allows header newline injection in Python

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2026-1299 中危 3.11.2-6+deb12u6 3.11.2-6+deb12u7 cpython: email header injection due to unquoted newlines

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-23 17:16 修改: 2026-04-15 00:35
python3.11-minimal CVE-2026-1502 中危 3.11.2-6+deb12u6 python: Python: HTTP header injection via CR/LF in proxy tunnel headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 18:16 修改: 2026-06-04 15:16
python3.11-minimal CVE-2026-3276 中危 3.11.2-6+deb12u6 python: Python unicodedata: Denial of Service due to excessive CPU consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-03 16:16 修改: 2026-06-16 15:16
python3.11-minimal CVE-2026-3446 中危 3.11.2-6+deb12u6 python: Python base64: Incomplete data decoding due to premature stop at padding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 19:16 修改: 2026-04-13 17:16
python3.11-minimal CVE-2026-6019 中危 3.11.2-6+deb12u6 python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-22 20:16 修改: 2026-05-28 19:15
python3.11-minimal CVE-2026-7774 中危 3.11.2-6+deb12u6 python: CPython: Python tarfile: Arbitrary file write via crafted link entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-04 16:16 修改: 2026-06-10 19:16
python3.11-minimal CVE-2026-8328 中危 3.11.2-6+deb12u6 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-13 21:16 修改: 2026-06-10 19:16
python3.11-minimal CVE-2026-9669 中危 3.11.2-6+deb12u6 python: Python: Denial of Service via out-of-bounds write in BZ2 decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-08 23:17 修改: 2026-06-10 19:16
sed CVE-2026-5958 中危 4.9-1 4.9-1+deb12u1 sed: GNU sed TOCTOU race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
libavdevice59 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
systemd CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
systemd CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
systemd CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
systemd CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
systemd-sysv CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
systemd-sysv CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
systemd-sysv CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
systemd-sysv CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
tar CVE-2026-5704 中危 1.34+dfsg-1.2+deb12u1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
udev CVE-2026-29111 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
udev CVE-2026-40225 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
udev CVE-2026-40226 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
udev CVE-2026-4105 中危 252.38-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
util-linux CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
util-linux CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
util-linux-extra CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
util-linux-extra CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
libavdevice59 CVE-2025-22919 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 23:15 修改: 2026-04-15 00:35
xdg-utils CVE-2020-27748 中危 1.1.3-4.1 xdg-utils: local file inclusion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27748

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2021-06-01 14:15 修改: 2024-11-21 05:21
libavdevice59 CVE-2025-22921 中危 7:5.1.6-0+deb12u1 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a seg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-22921

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-01-12 13:08
libavdevice59 CVE-2025-59731 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 When decoding an OpenEXR file that uses DWAA or DWAB compression, the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59731

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-06 08:15 修改: 2026-04-15 00:35
libavdevice59 CVE-2025-63757 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 ffmpeg: FFmpeg: Integer overflow vulnerability leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-63757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-18 15:15 修改: 2025-12-30 20:04
libavdevice59 CVE-2025-7700 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg: NULL Pointer Dereference in FFmpeg ALS Decoder (libavcodec/alsdec.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7700

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 19:16 修改: 2026-05-06 16:16
libavdevice59 CVE-2025-9951 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9951

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 14:15 修改: 2026-04-15 00:35
libavdevice59 CVE-2026-12706 中危 7:5.1.6-0+deb12u1 7:5.1.9-0+deb12u1 ffmpeg: ffmpeg: heap use-after-free read in RASC decoder decode_move()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12706

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavdevice59 CVE-2026-30997 中危 7:5.1.6-0+deb12u1 FFmpeg: FFmpeg: Denial of Service via out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-30997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 15:17 修改: 2026-04-23 20:12
libavdevice59 CVE-2026-6385 中危 7:5.1.6-0+deb12u1 ffmpeg: FFmpeg: Denial of Service and potential arbitrary code execution via signed integer overflow in DVD subtitle parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6385

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-15 20:16 修改: 2026-04-17 15:17
cups-core-drivers CVE-2026-41079 中危 2.4.2-3+deb12u9 cups: CUPS: Information disclosure via crafted SNMP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41079

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2026-04-24 17:16 修改: 2026-04-27 13:40
chromium CVE-2026-12458 中危 149.0.7827.114-1~deb12u1 149.0.7827.155-1~deb12u1 chromium-browser: chromium-browser: Incorrect security UI in Passwords

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12458

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
cups-daemon CVE-2025-58436 中危 2.4.2-3+deb12u9 cups: Slow client communication leads to a possible DoS attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58436

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:24
cups-daemon CVE-2025-61915 中危 2.4.2-3+deb12u9 CUPS: Local denial-of-service via cupsd.conf update and related issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61915

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2025-11-29 03:15 修改: 2025-12-04 17:15
libavfilter8 CVE-2023-49502 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-11-04 18:15
xserver-common CVE-2025-62229 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xmayland: Use-after-free in XPresentNotify structure creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62229

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 06:15 修改: 2026-04-20 14:16
xserver-common CVE-2025-62230 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xwayland: Use-after-free in Xkb client resource removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62230

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 06:15 修改: 2026-04-20 14:16
xserver-common CVE-2025-62231 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xmayland: Value overflow in XkbSetCompatMap()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62231

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 05:15 修改: 2026-04-20 14:16
xserver-common CVE-2026-50262 中危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds read/write in GLX ChangeDrawableAttributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50262

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-15 13:40
xserver-common CVE-2026-50263 中危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free information disclosure in CreateSaverWindow()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50263

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-11 19:46
libavfilter8 CVE-2023-49528 中危 7:5.1.6-0+deb12u1 Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, al ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49528

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-12 06:15 修改: 2025-11-04 18:15
libavfilter8 CVE-2023-50007 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a par ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50007

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavfilter8 CVE-2023-50008 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the c ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50008

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-19 17:15 修改: 2025-06-06 13:15
libavfilter8 CVE-2023-6601 中危 7:5.1.6-0+deb12u1 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows by ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6601

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavfilter8 CVE-2023-6602 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows po ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6602

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-12-31 15:15 修改: 2025-11-03 20:16
libavfilter8 CVE-2023-6604 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg. This vulnerability allows unexpected addit ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6604

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavfilter8 CVE-2023-6605 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 A flaw was found in FFmpeg's DASH playlist support. This vulnerability ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6605

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-06 17:15 修改: 2025-11-03 20:16
libavfilter8 CVE-2024-31578 中危 7:5.1.6-0+deb12u1 FFmpeg version n6.1.1 was discovered to contain a heap use-after-free ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31578

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 14:15 修改: 2025-11-04 18:16
libavfilter8 CVE-2024-31582 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg version n6.1 was discovered to contain a heap buffer overflow v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31582

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-17 19:15 修改: 2025-11-04 18:16
libavfilter8 CVE-2024-35367 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_alti ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35367

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavfilter8 CVE-2024-35368 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35368

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 20:15 修改: 2025-11-03 21:16
libavfilter8 CVE-2024-36618 中危 7:5.1.6-0+deb12u1 7:5.1.8-0+deb12u1 FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavforma ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 18:15 修改: 2025-11-03 21:16
libavfilter8 CVE-2025-0518 中危 7:5.1.6-0+deb12u1 7:5.1.7-0+deb12u1 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg all ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0518

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-01-16 17:15 修改: 2025-11-03 21:18
xserver-xorg-core CVE-2025-62229 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xmayland: Use-after-free in XPresentNotify structure creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62229

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 06:15 修改: 2026-04-20 14:16
xserver-xorg-core CVE-2025-62230 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xwayland: Use-after-free in Xkb client resource removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62230

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 06:15 修改: 2026-04-20 14:16
xserver-xorg-core CVE-2025-62231 中危 2:21.1.7-3+deb12u10 2:21.1.7-3+deb12u11 xorg: xmayland: Value overflow in XkbSetCompatMap()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62231

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-30 05:15 修改: 2026-04-20 14:16
xserver-xorg-core CVE-2026-50262 中危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds read/write in GLX ChangeDrawableAttributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50262

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-15 13:40
xserver-xorg-core CVE-2026-50263 中危 2:21.1.7-3+deb12u10 xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free information disclosure in CreateSaverWindow()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50263

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 12:16 修改: 2026-06-11 19:46
xz-utils CVE-2026-34743 中危 5.4.1-1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
libavfilter8 CVE-2025-10256 中危 7:5.1.6-0+deb12u1 ffmpeg: NULL pointer dereference in Firequalizer filter (libavfilter/af_firequalizer.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10256

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-18 21:16 修改: 2026-02-26 22:33
zlib1g CVE-2026-27171 中危 1:1.2.13.dfsg-1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
libcurl4 CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
libcurl4 CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
gpgv CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
iptables CVE-2012-2663 低危 1.8.9-2 iptables: --syn flag bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
apt-transport-https CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
gcc-12-base CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
cups-ipp-utils CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
cups-client CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
libde265-0 CVE-2025-61147 低危 1.0.11-1+deb12u2 strukturag libde265 commit d9fea9d wa discovered to contain a segmenta ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61147

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-23 20:28 修改: 2026-03-24 12:25
libjq1 CVE-2024-23337 低危 1.6-2.1 jq: jq has signed integer overflow in jv.c:jvp_array_write

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23337

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-05-21 15:16 修改: 2025-06-20 17:41
libjq1 CVE-2025-9403 低危 1.6-2.1 jq: assertion failure in run_jq_tests() of the file jq_test.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9403

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-08-25 03:15 修改: 2026-04-29 01:00
libssl3 CVE-2025-27587 低危 3.0.16-1~deb12u1 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-06-16 22:15 修改: 2026-04-15 00:35
libssl3 CVE-2025-68160 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2025-69418 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2025-69420 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2025-9232 低危 3.0.16-1~deb12u1 3.0.17-1~deb12u3 openssl: Out-of-bounds read in HTTP client no_proxy handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
libssl3 CVE-2026-22795 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-22796 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3 CVE-2026-34180 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
libssl3 CVE-2026-42766 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
libssl3 CVE-2026-42767 低危 3.0.16-1~deb12u1 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
libssl3 CVE-2026-42770 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
libssl3 CVE-2026-45446 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
libssl3 CVE-2026-7383 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:46
libssl3 CVE-2026-9076 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:45
libstdc++6 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libjq1 CVE-2026-40612 低危 1.6-2.1 jq: stack overflow via unbounded recursion in jv_contains

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40612

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
ghostscript CVE-2023-38560 低危 10.0.0~dfsg-11+deb12u7 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38560

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-01 17:15 修改: 2024-11-21 08:13
libdw1 CVE-2024-25260 低危 0.188-2.1 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-20 18:15 修改: 2025-04-25 20:42
libjxl0.7 CVE-2021-36691 低危 0.7.0-10+deb12u1 libjxl v0.5.0 is affected by a Assertion failed issue in lib/jxl/image ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36691

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2021-08-30 20:15 修改: 2024-11-21 06:13
libdw1 CVE-2025-1352 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-16 15:15 修改: 2026-06-02 14:16
libdw1 CVE-2025-1365 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 00:15 修改: 2025-11-04 20:07
libdw1 CVE-2025-1371 低危 0.188-2.1 elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 03:15 修改: 2025-11-04 20:13
libk5crypto3 CVE-2018-5709 低危 1.20.1-2+deb12u3 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libk5crypto3 CVE-2024-26458 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libk5crypto3 CVE-2024-26461 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libk5crypto3 CVE-2026-11850 低危 1.20.1-2+deb12u3 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libdw1 CVE-2025-1372 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 03:15 修改: 2025-11-04 20:19
libdw1 CVE-2025-1376 低危 0.188-2.1 elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 05:15 修改: 2026-06-02 14:16
libdw1 CVE-2025-1377 低危 0.188-2.1 elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 05:15 修改: 2025-11-04 20:26
libkrb5-3 CVE-2018-5709 低危 1.20.1-2+deb12u3 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5-3 CVE-2024-26458 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5-3 CVE-2024-26461 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libkrb5-3 CVE-2026-11850 低危 1.20.1-2+deb12u3 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
ghostscript CVE-2024-29511 低危 10.0.0~dfsg-11+deb12u7 ghostscript: ghostscript: arbitrary file read/write through Tesseract configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29511

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-03 19:15 修改: 2025-04-28 17:12
libegl-mesa0 CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libegl-mesa0 CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libkrb5support0 CVE-2018-5709 低危 1.20.1-2+deb12u3 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libkrb5support0 CVE-2024-26458 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5support0 CVE-2024-26461 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libkrb5support0 CVE-2026-11850 低危 1.20.1-2+deb12u3 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libegl-mesa0 CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
liblcms2-2 CVE-2025-29070 低危 2.14-2 A heap buffer overflow vulnerability has been identified in thesmooth2 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29070

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-01 21:15 修改: 2026-04-15 00:35
libegl-mesa0 CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libldap-2.5-0 CVE-2015-3276 低危 2.5.13+dfsg-5 openldap: incorrect multi-keyword mode cipherstring parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
libldap-2.5-0 CVE-2017-14159 低危 2.5.13+dfsg-5 openldap: Privilege escalation via PID file manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2017-09-05 18:29 修改: 2026-05-13 00:24
libldap-2.5-0 CVE-2017-17740 低危 2.5.13+dfsg-5 openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2017-12-18 06:29 修改: 2025-04-20 01:37
libldap-2.5-0 CVE-2020-15719 低危 2.5.13+dfsg-5 openldap: Certificate validation incorrectly matches name against CN-ID

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2020-07-14 14:15 修改: 2024-11-21 05:06
libldap-2.5-0 CVE-2026-22185 低危 2.5.13+dfsg-5 OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
libegl1 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2026-04-15 00:35
libldap-common CVE-2015-3276 低危 2.5.13+dfsg-5 openldap: incorrect multi-keyword mode cipherstring parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2015-12-07 20:59 修改: 2026-05-06 22:30
libldap-common CVE-2017-14159 低危 2.5.13+dfsg-5 openldap: Privilege escalation via PID file manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2017-09-05 18:29 修改: 2026-05-13 00:24
libldap-common CVE-2017-17740 低危 2.5.13+dfsg-5 openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2017-12-18 06:29 修改: 2025-04-20 01:37
libldap-common CVE-2020-15719 低危 2.5.13+dfsg-5 openldap: Certificate validation incorrectly matches name against CN-ID

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2020-07-14 14:15 修改: 2024-11-21 05:06
libldap-common CVE-2026-22185 低危 2.5.13+dfsg-5 OpenLDAP: OpenLDAP LMDB: Denial of Service and Information Disclosure via Heap Buffer Underflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22185

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-07 21:16 修改: 2026-04-15 00:35
libllvm15 CVE-2023-26924 低危 1:15.0.6-4+b1 llvm: mlir:: outlineSingleBlockRegion crashes with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-03-27 22:15 修改: 2024-11-21 07:52
libllvm15 CVE-2023-29932 低危 1:15.0.6-4+b1 llvm: canonicalize pass crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29932

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29933 低危 1:15.0.6-4+b1 llvm: one shot bufferize crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29933

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29934 低危 1:15.0.6-4+b1 llvm: convert-scf-to-spirv Pass crashed with segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29934

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29935 低危 1:15.0.6-4+b1 llvm: gpu-to-llvm Pass crashed with error message

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29935

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29939 低危 1:15.0.6-4+b1 llvm-project commit a0138390 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29939

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29941 低危 1:15.0.6-4+b1 llvm: sparse-buffer-rewrite pass crashes with Segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29941

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2023-29942 低危 1:15.0.6-4+b1 llvm: convert-spirv-to-llvm Pass trigger Segmentation fault in LLVMStructType verifier

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29942

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-05-05 15:15 修改: 2025-01-29 21:15
libllvm15 CVE-2024-31852 低危 1:15.0.6-4+b1 llvm: LR register can be overwritten without data being saved to the stack on ARM

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31852

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-05 15:15 修改: 2026-04-15 00:35
libllvm15 CVE-2024-7883 低危 1:15.0.6-4+b1 clang: CMSE secure state may leak from stack to floating-point registers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7883

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-10-31 17:15 修改: 2025-12-23 15:30
libelf1 CVE-2024-25260 低危 0.188-2.1 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-20 18:15 修改: 2025-04-25 20:42
libelf1 CVE-2025-1352 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-16 15:15 修改: 2026-06-02 14:16
libelf1 CVE-2025-1365 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 00:15 修改: 2025-11-04 20:07
libelf1 CVE-2025-1371 低危 0.188-2.1 elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 03:15 修改: 2025-11-04 20:13
libelf1 CVE-2025-1372 低危 0.188-2.1 elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 03:15 修改: 2025-11-04 20:19
libelf1 CVE-2025-1376 低危 0.188-2.1 elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 05:15 修改: 2026-06-02 14:16
libelf1 CVE-2025-1377 低危 0.188-2.1 elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-17 05:15 修改: 2025-11-04 20:26
ghostscript CVE-2025-48708 低危 10.0.0~dfsg-11+deb12u7 Ghostscript: Ghostscript Argument Sanitization Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48708

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-23 04:15 修改: 2025-06-20 17:13
ghostscript CVE-2025-59800 低危 10.0.0~dfsg-11+deb12u7 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via crafted document processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59800

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-09-25 19:27
ghostscript CVE-2025-59801 低危 10.0.0~dfsg-11+deb12u7 In Artifex GhostXPS before 10.06.0, there is a stack-based buffer over ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59801

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2026-04-15 00:35
ghostscript CVE-2025-7462 低危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 A vulnerability was found in Artifex GhostPDL up to 3989415a5b8e99b9d1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-12 06:15 修改: 2026-04-15 00:35
libsystemd-shared CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libsystemd-shared CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd-shared CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd-shared CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd-shared CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
coreutils CVE-2016-2781 低危 9.1-1 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2017-02-07 15:59 修改: 2026-05-13 00:24
libblkid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libblkid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libbpf1 CVE-2025-29481 低危 1:1.1.0-1 libbpf: Heap Buffer Overflow in libbpf

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-07 20:15 修改: 2026-02-25 08:16
libsystemd0 CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libsystemd0 CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libsystemd0 CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd0 CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libsystemd0 CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libtasn1-6 CVE-2025-13151 低危 4.19.0-2+deb12u1 libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
gir1.2-packagekitglib-1.0 CVE-2022-0987 低危 1.2.6-5 PackageKit: Information Disclosure in Transaction Interface via timing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0987

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-06-28 17:15 修改: 2024-11-21 06:39
libmbedcrypto7 CVE-2018-1000520 低危 2.28.3-1 ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite Allows In ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000520

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-06-26 16:29 修改: 2024-11-21 03:40
libmbedcrypto7 CVE-2023-43615 低危 2.28.3-1 Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow.

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-07 01:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2024-45157 低危 2.28.3-1 An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45157

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-09-05 19:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2025-66442 低危 2.28.3-1 mbedtls: Mbed TLS and TF-PSA-Crypto: Information disclosure via compiler-induced timing side channel

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66442

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 20:16 修改: 2026-04-03 20:04
libtiff6 CVE-2017-16232 低危 4.5.0-6+deb12u2 libtiff: Memory leaks in tif_open.c, tif_lzw.c, and tif_aux.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16232

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-21 15:59 修改: 2024-11-21 03:16
libtiff6 CVE-2018-10126 低危 4.5.0-6+deb12u2 libtiff: NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10126

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-04-21 21:29 修改: 2024-11-21 03:40
libtiff6 CVE-2022-1210 低危 4.5.0-6+deb12u2 tiff: Malicious file leads to a denial of service in TIFF File Handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1210

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-04-03 09:15 修改: 2024-11-21 06:40
libtiff6 CVE-2023-1916 低危 4.5.0-6+deb12u2 libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1916

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-10 22:15 修改: 2024-11-21 07:40
libtiff6 CVE-2023-3164 低危 4.5.0-6+deb12u2 libtiff: heap-buffer-overflow in extractImageSection()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-11-02 12:15 修改: 2024-11-21 08:16
libtiff6 CVE-2023-6228 低危 4.5.0-6+deb12u2 libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-12-18 14:15 修改: 2024-11-21 08:43
libtiff6 CVE-2024-13978 低危 4.5.0-6+deb12u2 libtiff: LibTIFF Null Pointer Dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13978

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-01 22:15 修改: 2025-11-03 19:15
libtiff6 CVE-2025-61143 低危 4.5.0-6+deb12u2 libtiff: libtiff: Denial of Service via NULL pointer dereference in tif_open.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61143

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6 CVE-2025-61144 低危 4.5.0-6+deb12u2 libtiff: libtiff: Denial of Service via buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61144

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6 CVE-2025-61145 低危 4.5.0-6+deb12u2 libtiff: libtiff: Denial of service via double free in tiffcrop.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-23 19:22 修改: 2026-02-25 15:20
libtiff6 CVE-2025-8176 低危 4.5.0-6+deb12u2 libtiff: LibTIFF Use-After-Free Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8176

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-26 04:16 修改: 2026-04-29 01:00
libtiff6 CVE-2025-8177 低危 4.5.0-6+deb12u2 libtiff: LibTIFF Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8177

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-26 04:16 修改: 2025-09-11 16:57
libtiff6 CVE-2025-8534 低危 4.5.0-6+deb12u2 libtiff: Libtiff Null Pointer Dereference Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8534

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-05 00:15 修改: 2026-04-29 01:00
libtiff6 CVE-2025-8851 低危 4.5.0-6+deb12u2 libtiff: LibTIFF Stack-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8851

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-11 14:15 修改: 2025-10-30 21:10
libtiff6 CVE-2025-8961 低危 4.5.0-6+deb12u2 libtiff: LibTIFF memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8961

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-14 13:15 修改: 2026-04-29 01:00
libtiff6 CVE-2025-9165 低危 4.5.0-6+deb12u2 libtiff: LibTIFF memory leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9165

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-19 20:15 修改: 2026-04-29 01:00
libmbedcrypto7 CVE-2026-25833 低危 2.28.3-1 Mbed TLS 3.5.0 to 3.6.5 fixed in 3.6.6 and 4.1.0 has a buffer overflow ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25833

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 19:16 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2026-34871 低危 2.28.3-1 An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34871

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 19:16 修改: 2026-06-05 19:40
libtinfo6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
libmbedcrypto7 CVE-2026-34877 低危 2.28.3-1 An issue was discovered in Mbed TLS versions from 2.19.0 up to 3.6.5, ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34877

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 17:16 修改: 2026-06-05 19:38
cups-daemon CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
jq CVE-2024-23337 低危 1.6-2.1 jq: jq has signed integer overflow in jv.c:jvp_array_write

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23337

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-05-21 15:16 修改: 2025-06-20 17:41
jq CVE-2025-9403 低危 1.6-2.1 jq: assertion failure in run_jq_tests() of the file jq_test.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9403

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-08-25 03:15 修改: 2026-04-29 01:00
libudev1 CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libudev1 CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libudev1 CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libudev1 CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libudev1 CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libmfx1 CVE-2023-22656 低危 22.5.4-1 Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL soft ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22656

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:15 修改: 2026-04-15 00:35
libmfx1 CVE-2023-47282 低危 22.5.4-1 Out-of-bounds write in Intel(R) Media SDK all versions and some Intel( ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:16 修改: 2026-04-15 00:35
libmfx1 CVE-2023-48727 低危 22.5.4-1 NULL pointer dereference in some Intel(R) oneVPL software before versi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-05-16 21:16 修改: 2026-04-15 00:35
jq CVE-2026-40612 低危 1.6-2.1 jq: stack overflow via unbounded recursion in jv_contains

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40612

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-11 18:16 修改: 2026-05-13 17:00
libc-bin CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libmount1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libmount1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libexpat1 CVE-2023-52426 低危 2.5.0-1+deb12u1 expat: recursive XML entity expansion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-02-04 20:15 修改: 2025-11-04 19:16
libexpat1 CVE-2024-28757 低危 2.5.0-1+deb12u1 expat: XML Entity Expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-10 05:15 修改: 2025-11-04 22:15
libncursesw6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
libexpat1 CVE-2026-24515 低危 2.5.0-1+deb12u1 libexpat: libexpat null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
libexpat1 CVE-2026-41080 低危 2.5.0-1+deb12u1 libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 17:16 修改: 2026-06-12 18:43
libc-bin CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libunbound8 CVE-2024-33655 低危 1.17.1-2+deb12u2 1.17.1-2+deb12u3 unbound: DNSBomb vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33655

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-06-06 17:15 修改: 2026-04-15 00:35
libunbound8 CVE-2024-43167 低危 1.17.1-2+deb12u2 1.17.1-2+deb12u3 unbound: NULL Pointer Dereference in Unbound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43167

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-08-12 13:38 修改: 2026-04-15 00:35
libunbound8 CVE-2024-43168 低危 1.17.1-2+deb12u2 1.17.1-2+deb12u3 unbound: Heap-Buffer-Overflow in Unbound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43168

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-08-12 13:38 修改: 2026-04-15 00:35
libunbound8 CVE-2026-32792 低危 1.17.1-2+deb12u2 unbound: Packet of death with DNSCrypt

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32792

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-05-20 10:16 修改: 2026-05-20 22:44
libc-bin CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libfdisk1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libfdisk1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libc-bin CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libuuid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libuuid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libnss3 CVE-2017-11695 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in alloc_segs

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11695

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libx264-164 CVE-2025-25467 低危 2:0.164.3095+gitbaee400-3 Insufficient tracking and releasing of allocated used memory in libx26 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-25467

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-02-18 22:15 修改: 2026-04-15 00:35
libnss3 CVE-2017-11696 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in __hash_open

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11696

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libnss3 CVE-2017-11697 低危 2:3.87.1-1+deb12u2 nss: Floating Point Exception in __hash_open

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11697

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libnss3 CVE-2017-11698 低危 2:3.87.1-1+deb12u2 nss: Heap-buffer-overflow in __get_page

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11698

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2017-12-27 19:29 修改: 2026-05-13 00:24
libopengl0 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2026-04-15 00:35
libc-bin CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libfontembed1 CVE-2025-57812 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-57812

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 19:15 修改: 2026-01-20 18:11
libxml2 CVE-2025-6170 低危 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u3 libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6170

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
libxml2 CVE-2025-8732 低危 2.9.14+dfsg-1.3~deb12u2 libxml2: libxml2: Uncontrolled Recursion Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8732

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-08 17:15 修改: 2026-06-02 14:16
libxml2 CVE-2026-0989 低危 2.9.14+dfsg-1.3~deb12u2 libxml2: Unbounded RelaxNG Include Recursion Leading to Stack Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0989

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxml2 CVE-2026-0992 低危 2.9.14+dfsg-1.3~deb12u2 libxml2: libxml2: Denial of Service via crafted XML catalogs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0992

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-15 15:15 修改: 2026-04-22 10:16
libxml2 CVE-2026-1757 低危 2.9.14+dfsg-1.3~deb12u2 libxml2: Memory Leak Leading to Local Denial of Service in xmllint Interactive Shell

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1757

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-02 13:15 修改: 2026-04-22 10:16
libfontembed1 CVE-2025-64503 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: cups-filters: cups-filters: Out-of-bounds write via crafted PDF MediaBox

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64503

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 22:15 修改: 2026-01-20 18:12
libxtables12 CVE-2012-2663 低危 1.8.9-2 iptables: --syn flag bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
libopenjp2-7 CVE-2016-10505 低危 2.5.0-2+deb12u1 openjpeg: NULL pointer dereference in imagetopnm function in convert.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10505

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-08-30 09:29 修改: 2026-05-13 00:24
libopenjp2-7 CVE-2016-9113 低危 2.5.0-2+deb12u1 openjpeg2: Multiple security issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9113

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7 CVE-2016-9114 低危 2.5.0-2+deb12u1 openjpeg2: Multiple security issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9114

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7 CVE-2016-9115 低危 2.5.0-2+deb12u1 openjpeg2: Multiple security issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9115

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7 CVE-2016-9116 低危 2.5.0-2+deb12u1 openjpeg2: Multiple security issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9116

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7 CVE-2016-9117 低危 2.5.0-2+deb12u1 openjpeg2: Multiple security issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9117

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2016-10-30 22:59 修改: 2026-05-06 22:30
libopenjp2-7 CVE-2016-9580 低危 2.5.0-2+deb12u1 openjpeg2: Integer overflow in tiftoimage causes heap buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9580

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-01 16:29 修改: 2024-11-21 03:01
libopenjp2-7 CVE-2016-9581 低危 2.5.0-2+deb12u1 openjpeg2: Infinite loop in tiftoimage resulting into heap buffer overflow in convert_32s_C1P1

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9581

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-01 14:29 修改: 2024-11-21 03:01
libopenjp2-7 CVE-2018-16376 低危 2.5.0-2+deb12u1 openjpeg: Heap-based buffer overflow in function t2_encode_packet in src/lib/openmj2/t2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16376

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-09-03 00:29 修改: 2024-11-21 03:52
libopenjp2-7 CVE-2019-6988 低危 2.5.0-2+deb12u1 openjpeg: DoS via memory exhaustion in opj_decompress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6988

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-28 16:29 修改: 2024-11-21 04:47
libopenjp2-7 CVE-2023-39327 低危 2.5.0-2+deb12u1 openjpeg: Malicious files can cause the program to enter a large loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39327

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-13 03:15 修改: 2026-03-09 19:15
libopenjp2-7 CVE-2026-6192 低危 2.5.0-2+deb12u1 2.5.0-2+deb12u3 uclouvain/openjpeg: OpenJPEG: Denial of Service via integer overflow in opj_pi_initialise_encode

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6192

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-13 17:16 修改: 2026-05-21 16:16
libc-bin CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libgbm1 CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
locales CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
locales CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
locales CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
libpackagekit-glib2-18 CVE-2022-0987 低危 1.2.6-5 PackageKit: Information Disclosure in Transaction Interface via timing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0987

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-06-28 17:15 修改: 2024-11-21 06:39
libgbm1 CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libgbm1 CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libgbm1 CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
locales-all CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
locales-all CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
locales-all CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales-all CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales-all CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales-all CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
locales-all CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
login CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u1 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
login CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u1 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
login TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u1 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgcc-s1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
mesa-va-drivers CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
mesa-va-drivers CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
mesa-va-drivers CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
mesa-va-drivers CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libc-bin CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
mesa-vulkan-drivers CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
mesa-vulkan-drivers CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
mesa-vulkan-drivers CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
mesa-vulkan-drivers CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libgcrypt20 CVE-2018-6829 低危 1.10.1-3 libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
libgcrypt20 CVE-2024-2236 低危 1.10.1-3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
mount CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
mount CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
coreutils CVE-2017-18018 低危 9.1-1 coreutils: race condition vulnerability in chown and chgrp

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
cups CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
ncurses-base CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
gnupg CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
krb5-locales CVE-2018-5709 低危 1.20.1-2+deb12u3 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
ncurses-bin CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
libgfortran5 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libc-l10n CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
libc-l10n CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libgif7 CVE-2020-23922 低危 5.2.1-2.5 giflib: out-of-bounds read in DumpScreen2RGB() in gif2rgb.c in gif2rgb tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-23922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2021-04-21 18:15 修改: 2024-11-21 05:14
libgif7 CVE-2021-40633 低危 5.2.1-2.5 A memory leak (out-of-memory) in gif2rgb in util/gif2rgb.c in giflib 5 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40633

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-06-14 11:15 修改: 2024-11-21 06:24
libpam-systemd CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
libpam-systemd CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
libpam-systemd CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libpam-systemd CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
libpam-systemd CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libgif7 CVE-2022-28506 低危 5.2.1-2.5 giflib: buffer overflow in function DumpScreen2RGB()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-04-25 13:15 修改: 2024-11-21 06:57
libgif7 CVE-2023-39742 低危 5.2.1-2.5 giflib: giflib: Denial of Service via getarg.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39742

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-25 14:15 修改: 2024-11-21 08:15
nginx CVE-2009-4487 低危 1.22.1-9+deb12u2 nginx: Absent sanitation of escape sequences in web server log

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
nginx CVE-2013-0337 低危 1.22.1-9+deb12u2 The default configuration of nginx, possibly 1.3.13 and earlier, uses ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
nginx CVE-2023-44487 低危 1.22.1-9+deb12u2 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-10 14:15 修改: 2026-05-12 15:10
nginx CVE-2025-53859 低危 1.22.1-9+deb12u2 1.22.1-9+deb12u3 nginx: NGINX ngx_mail_smtp_module vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-13 15:15 修改: 2025-11-04 22:16
nginx CVE-2026-28753 低危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:15
libgif7 CVE-2023-48161 低危 5.2.1-2.5 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-11-22 06:15 修改: 2024-11-21 08:31
libgif7 CVE-2024-45993 低危 5.2.1-2.5 giflib: heap buffer overflow via gif2rgb

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45993

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-09-30 17:15 修改: 2025-07-10 15:41
libgif7 CVE-2025-31344 低危 5.2.1-2.5 giflib: The giflib open-source component has a buffer overflow vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-31344

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-14 08:15 修改: 2026-04-15 00:35
libgl1 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2026-04-15 00:35
libc-l10n CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libgl1-mesa-dri CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libgl1-mesa-dri CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libgl1-mesa-dri CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libgl1-mesa-dri CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libc-l10n CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libglapi-mesa CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libglapi-mesa CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
nginx-common CVE-2009-4487 低危 1.22.1-9+deb12u2 nginx: Absent sanitation of escape sequences in web server log

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-4487

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2010-01-13 20:30 修改: 2026-04-23 00:35
nginx-common CVE-2013-0337 低危 1.22.1-9+deb12u2 The default configuration of nginx, possibly 1.3.13 and earlier, uses ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0337

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-27 00:55 修改: 2026-04-29 01:13
nginx-common CVE-2023-44487 低危 1.22.1-9+deb12u2 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-10 14:15 修改: 2026-05-12 15:10
nginx-common CVE-2025-53859 低危 1.22.1-9+deb12u2 1.22.1-9+deb12u3 nginx: NGINX ngx_mail_smtp_module vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-53859

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-13 15:15 修改: 2025-11-04 22:16
nginx-common CVE-2026-28753 低危 1.22.1-9+deb12u2 1.22.1-9+deb12u5 NGINX: NGINX Plus: NGINX Open Source: NGINX Plus and NGINX Open Source: Request manipulation via header injection in SMTP upstream requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28753

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-24 15:16 修改: 2026-03-26 21:15
libglapi-mesa CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libglapi-mesa CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libperl5.36 CVE-2011-4116 低危 5.36.0-7+deb12u2 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
libperl5.36 CVE-2023-31486 低危 5.36.0-7+deb12u2 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
libpixman-1-0 CVE-2023-37769 低危 0.42.2-1 stress-test master commit e4c878 was discovered to contain a FPE vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-07-17 20:15 修改: 2024-11-21 08:12
libc-l10n CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc-l10n CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
openssh-client CVE-2007-2243 低危 1:9.2p1-2+deb12u6 OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
openssh-client CVE-2007-2768 低危 1:9.2p1-2+deb12u6 OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
openssh-client CVE-2008-3234 低危 1:9.2p1-2+deb12u6 sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
openssh-client CVE-2016-20012 低危 1:9.2p1-2+deb12u6 openssh: Public key information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2021-09-15 20:15 修改: 2026-05-29 16:16
openssh-client CVE-2018-15919 低危 1:9.2p1-2+deb12u6 openssh: User enumeration via malformed packets in authentication requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-28 08:29 修改: 2025-12-18 12:15
openssh-client CVE-2019-6110 低危 1:9.2p1-2+deb12u6 openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-31 18:29 修改: 2025-12-18 15:15
openssh-client CVE-2020-14145 低危 1:9.2p1-2+deb12u6 openssh: Observable discrepancy leading to an information leak in the algorithm negotiation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-06-29 18:15 修改: 2025-12-18 15:15
openssh-client CVE-2020-15778 低危 1:9.2p1-2+deb12u6 openssh: scp allows command injection when using backtick characters in the destination argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-07-24 14:15 修改: 2025-07-28 18:12
openssh-client CVE-2026-35388 低危 1:9.2p1-2+deb12u6 1:9.2p1-2+deb12u10 OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 17:16 修改: 2026-04-27 14:12
krb5-locales CVE-2024-26458 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
krb5-locales CVE-2024-26461 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
krb5-locales CVE-2026-11850 低危 1.20.1-2+deb12u3 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libglib2.0-0 CVE-2012-0039 低危 2.74.6-2+deb12u6 glib2: hash table collisions CPU usage DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
libglib2.0-0 CVE-2025-7039 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-03 02:15 修改: 2026-06-02 14:16
libglib2.0-0 CVE-2026-0988 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0988

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 12:15 修改: 2026-04-24 21:16
libglib2.0-0 CVE-2026-1485 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Glib: Local denial of service via buffer underflow in content type parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1485

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-04-15 00:35
cups-filters CVE-2025-57812 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-57812

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 19:15 修改: 2026-01-20 18:11
libpng16-16 CVE-2021-4214 低危 1.6.39-2 libpng: hardcoded value leads to heap-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-08-24 16:15 修改: 2024-11-21 06:37
libpng16-16 CVE-2025-28162 低危 1.6.39-2 libpng: libpng: Denial of Service via buffer overflow in pngimage utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28162

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 16:16 修改: 2026-02-06 20:06
libpng16-16 CVE-2025-28164 低危 1.6.39-2 libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 16:16 修改: 2026-03-04 19:42
libpng16-16 CVE-2026-3713 低危 1.6.39-2 libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-08 06:16 修改: 2026-04-29 01:00
libc6 CVE-2010-4756 低危 2.36-9+deb12u14 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
openssl CVE-2025-27587 低危 3.0.16-1~deb12u1 OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-06-16 22:15 修改: 2026-04-15 00:35
openssl CVE-2025-68160 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2025-69418 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2025-69420 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2025-9232 低危 3.0.16-1~deb12u1 3.0.17-1~deb12u3 openssl: Out-of-bounds read in HTTP client no_proxy handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
openssl CVE-2026-22795 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2026-22796 低危 3.0.16-1~deb12u1 3.0.18-1~deb12u2 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl CVE-2026-34180 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
openssl CVE-2026-42766 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
openssl CVE-2026-42767 低危 3.0.16-1~deb12u1 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
openssl CVE-2026-42770 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:58
openssl CVE-2026-45446 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:57
openssl CVE-2026-7383 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:46
openssl CVE-2026-9076 低危 3.0.16-1~deb12u1 3.0.20-1~deb12u2 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-09 17:17 修改: 2026-06-16 02:45
libpolkit-agent-1-0 CVE-2016-2568 低危 122-3 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-02-13 18:59 修改: 2026-05-13 00:24
packagekit CVE-2022-0987 低危 1.2.6-5 PackageKit: Information Disclosure in Transaction Interface via timing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0987

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-06-28 17:15 修改: 2024-11-21 06:39
passwd CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u1 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
passwd CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u1 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
passwd TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u1 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpolkit-agent-1-0 CVE-2025-7519 低危 122-3 polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-14 14:15 修改: 2025-08-11 19:20
libc6 CVE-2018-20796 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
libpolkit-gobject-1-0 CVE-2016-2568 低危 122-3 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-02-13 18:59 修改: 2026-05-13 00:24
libpolkit-gobject-1-0 CVE-2025-7519 低危 122-3 polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-14 14:15 修改: 2025-08-11 19:20
libc6 CVE-2019-1010022 低危 2.36-9+deb12u14 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-1010023 低危 2.36-9+deb12u14 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-1010024 低危 2.36-9+deb12u14 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libglib2.0-bin CVE-2012-0039 低危 2.74.6-2+deb12u6 glib2: hash table collisions CPU usage DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
libglib2.0-bin CVE-2025-7039 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-03 02:15 修改: 2026-06-02 14:16
libpoppler-cpp0v5 CVE-2013-4472 低危 22.12.0-2+deb12u1 xpdf: insecure temporary file

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4472

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-04-22 14:23 修改: 2026-05-06 22:30
libpoppler-cpp0v5 CVE-2017-2814 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in DCTStream::readScan()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler-cpp0v5 CVE-2017-2818 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in the image rendering functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2818

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
perl CVE-2011-4116 低危 5.36.0-7+deb12u2 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl CVE-2023-31486 低危 5.36.0-7+deb12u2 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
libpoppler-cpp0v5 CVE-2017-2820 低危 22.12.0-2+deb12u1 poppler: Integer overflow in the JPEG 2000 image parsing functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler-cpp0v5 CVE-2017-9083 低危 22.12.0-2+deb12u1 poppler: Null pointer dereference in the JPXStream::readUByte function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9083

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-05-19 16:29 修改: 2026-05-13 00:24
libpoppler-cpp0v5 CVE-2019-9543 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler-cpp0v5 CVE-2019-9545 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler-cpp0v5 CVE-2022-24106 低危 22.12.0-2+deb12u1 In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24106

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-08-30 04:15 修改: 2024-11-21 06:49
libpoppler-cpp0v5 CVE-2024-6239 低危 22.12.0-2+deb12u1 poppler: pdfinfo: crash in broken documents when using -dests parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6239

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-06-21 14:15 修改: 2024-11-21 09:49
libpoppler-cpp0v5 CVE-2025-43903 低危 22.12.0-2+deb12u1 poppler: SignatureValue not checked within SignerInfo

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43903

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-18 21:15 修改: 2025-10-06 16:37
libglib2.0-bin CVE-2026-0988 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0988

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 12:15 修改: 2026-04-24 21:16
libglib2.0-bin CVE-2026-1485 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Glib: Local denial of service via buffer underflow in content type parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1485

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-04-15 00:35
libc6 CVE-2019-1010025 低危 2.36-9+deb12u14 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
libc6 CVE-2019-9192 低危 2.36-9+deb12u14 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
cups-filters CVE-2025-64503 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: cups-filters: cups-filters: Out-of-bounds write via crafted PDF MediaBox

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64503

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 22:15 修改: 2026-01-20 18:12
perl-base CVE-2011-4116 低危 5.36.0-7+deb12u2 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl-base CVE-2023-31486 低危 5.36.0-7+deb12u2 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
libpoppler126 CVE-2013-4472 低危 22.12.0-2+deb12u1 xpdf: insecure temporary file

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4472

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-04-22 14:23 修改: 2026-05-06 22:30
libpoppler126 CVE-2017-2814 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in DCTStream::readScan()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler126 CVE-2017-2818 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in the image rendering functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2818

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler126 CVE-2017-2820 低危 22.12.0-2+deb12u1 poppler: Integer overflow in the JPEG 2000 image parsing functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
libpoppler126 CVE-2017-9083 低危 22.12.0-2+deb12u1 poppler: Null pointer dereference in the JPXStream::readUByte function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9083

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-05-19 16:29 修改: 2026-05-13 00:24
libpoppler126 CVE-2019-9543 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler126 CVE-2019-9545 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
libpoppler126 CVE-2022-24106 低危 22.12.0-2+deb12u1 In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24106

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-08-30 04:15 修改: 2024-11-21 06:49
libpoppler126 CVE-2024-6239 低危 22.12.0-2+deb12u1 poppler: pdfinfo: crash in broken documents when using -dests parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6239

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-06-21 14:15 修改: 2024-11-21 09:49
libpoppler126 CVE-2025-43903 低危 22.12.0-2+deb12u1 poppler: SignatureValue not checked within SignerInfo

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43903

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-18 21:15 修改: 2025-10-06 16:37
libcaca0 CVE-2022-0856 低危 0.99.beta20-3 libcaca is affected by a Divide By Zero issue via img2txt, which allow ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0856

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-03-10 17:44 修改: 2024-11-21 06:39
libcairo-gobject2 CVE-2017-7475 低危 1.16.0-7 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-05-19 20:29 修改: 2026-05-13 00:24
perl-modules-5.36 CVE-2011-4116 低危 5.36.0-7+deb12u2 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
perl-modules-5.36 CVE-2023-31486 低危 5.36.0-7+deb12u2 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
libcairo-gobject2 CVE-2018-18064 低危 1.16.0-7 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-10-08 18:29 修改: 2024-11-21 03:55
polkitd CVE-2016-2568 低危 122-3 polkit: Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-02-13 18:59 修改: 2026-05-13 00:24
polkitd CVE-2025-7519 低危 122-3 polkit: XML policy file with a large number of nested elements may lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-14 14:15 修改: 2025-08-11 19:20
libglib2.0-data CVE-2012-0039 低危 2.74.6-2+deb12u6 glib2: hash table collisions CPU usage DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
libglib2.0-data CVE-2025-7039 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u7 glib: Buffer Under-read on GLib through glib/gfileutils.c via get_tmp_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7039

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-03 02:15 修改: 2026-06-02 14:16
libglib2.0-data CVE-2026-0988 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0988

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-21 12:15 修改: 2026-04-24 21:16
libglib2.0-data CVE-2026-1485 低危 2.74.6-2+deb12u6 2.74.6-2+deb12u9 Glib: Glib: Local denial of service via buffer underflow in content type parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1485

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-27 14:15 修改: 2026-04-15 00:35
libglvnd0 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2026-04-15 00:35
poppler-utils CVE-2013-4472 低危 22.12.0-2+deb12u1 xpdf: insecure temporary file

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4472

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-04-22 14:23 修改: 2026-05-06 22:30
poppler-utils CVE-2017-2814 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in DCTStream::readScan()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils CVE-2017-2818 低危 22.12.0-2+deb12u1 poppler: Heap-buffer overflow in the image rendering functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2818

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils CVE-2017-2820 低危 22.12.0-2+deb12u1 poppler: Integer overflow in the JPEG 2000 image parsing functionality

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-07-12 17:29 修改: 2025-04-20 01:37
poppler-utils CVE-2017-9083 低危 22.12.0-2+deb12u1 poppler: Null pointer dereference in the JPXStream::readUByte function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9083

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-05-19 16:29 修改: 2026-05-13 00:24
poppler-utils CVE-2019-9543 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readGenericBitmap() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9543

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
poppler-utils CVE-2019-9545 低危 22.12.0-2+deb12u1 poppler: recursive function call in JBIG2Stream::readTextRegion() in JBIG2Stream.cc causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9545

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-03-01 19:29 修改: 2024-11-21 04:51
poppler-utils CVE-2022-24106 低危 22.12.0-2+deb12u1 In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24106

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-08-30 04:15 修改: 2024-11-21 06:49
poppler-utils CVE-2024-6239 低危 22.12.0-2+deb12u1 poppler: pdfinfo: crash in broken documents when using -dests parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6239

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-06-21 14:15 修改: 2024-11-21 09:49
poppler-utils CVE-2025-43903 低危 22.12.0-2+deb12u1 poppler: SignatureValue not checked within SignerInfo

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-43903

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-18 21:15 修改: 2025-10-06 16:37
procps CVE-2023-4016 低危 2:4.0.2-3 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-02 05:15 修改: 2024-11-21 08:34
libcairo-gobject2 CVE-2019-6461 低危 1.16.0-7 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-16 18:29 修改: 2024-11-21 04:46
libglx-mesa0 CVE-2023-45913 低危 22.3.6-1+deb12u1 Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libglx-mesa0 CVE-2023-45919 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libglx-mesa0 CVE-2023-45922 低危 22.3.6-1+deb12u1 glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2025-11-04 19:16
libglx-mesa0 CVE-2023-45931 低危 22.3.6-1+deb12u1 Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libglx0 CVE-2023-45924 低危 1.6.0-1 libglxproto.c in OpenGL libglvnd bb06db5a was discovered to contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45924

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 05:15 修改: 2026-04-15 00:35
libcairo-gobject2 CVE-2019-6462 低危 1.16.0-7 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-16 18:29 修改: 2024-11-21 04:46
libcairo-gobject2 CVE-2025-50422 低危 1.16.0-7 poppler: Poppler crash on malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50422

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-04 17:15 修改: 2026-04-15 00:35
libcairo2 CVE-2017-7475 低危 1.16.0-7 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-05-19 20:29 修改: 2026-05-13 00:24
libcairo2 CVE-2018-18064 低危 1.16.0-7 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-10-08 18:29 修改: 2024-11-21 03:55
libcairo2 CVE-2019-6461 低危 1.16.0-7 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-16 18:29 修改: 2024-11-21 04:46
python3-jwt CVE-2025-45768 低危 2.6.0-1 pyjwt v2.10.1 was discovered to contain weak encryption. NOTE: this is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45768

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-31 21:15 修改: 2025-09-12 16:45
libcairo2 CVE-2019-6462 低危 1.16.0-7 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-01-16 18:29 修改: 2024-11-21 04:46
python3-software-properties CVE-2020-15709 低危 0.99.30-4.1~deb12u1 Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15709

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-09-05 04:15 修改: 2024-11-21 05:06
libcairo2 CVE-2025-50422 低危 1.16.0-7 poppler: Poppler crash on malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-50422

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-04 17:15 修改: 2026-04-15 00:35
coreutils CVE-2025-5278 低危 9.1-1 coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
gnupg-l10n CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
curl CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2024-03-27 08:15 修改: 2025-07-30 19:42
curl CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-02-05 10:15 修改: 2025-06-27 19:24
libcjson1 CVE-2023-26819 低危 1.7.15-1+deb12u2 1.7.15-1+deb12u3 cJSON: cJSON rejects a valid text

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26819

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-04-19 22:15 修改: 2025-11-03 20:16
libapparmor1 CVE-2016-1585 低危 3.0.8-3 In all versions of AppArmor mount rules are accidentally widened when ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1585

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-04-22 16:29 修改: 2025-05-02 14:12
libapt-pkg6.0 CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
libproc2-0 CVE-2023-4016 低危 2:4.0.2-3 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-02 05:15 修改: 2024-11-21 08:34
curl CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-09-12 06:15 修改: 2026-01-20 14:55
gnupg-utils CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libgnutls-dane0 CVE-2011-3389 低危 3.7.9-2+deb12u4 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
libgnutls-dane0 CVE-2025-9820 低危 3.7.9-2+deb12u4 3.7.9-2+deb12u6 gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
libgnutls-dane0 CVE-2026-5419 低危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
libatomic1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
curl CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
curl CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
curl CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
gpg CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
curl CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
libcups2 CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
curl CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
curl CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
libcupsfilters1 CVE-2025-57812 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-57812

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 19:15 修改: 2026-01-20 18:11
libcupsfilters1 CVE-2025-64503 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: cups-filters: cups-filters: Out-of-bounds write via crafted PDF MediaBox

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64503

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 22:15 修改: 2026-01-20 18:12
gpg-agent CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
cpp-12 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
cups-filters-core-drivers CVE-2025-57812 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: CUPS-Filters: Information disclosure and data corruption via crafted TIFF image file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-57812

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 19:15 修改: 2026-01-20 18:11
python3.11 CVE-2025-13462 低危 3.11.2-6+deb12u6 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
python3.11 CVE-2026-12003 低危 3.11.2-6+deb12u6 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-16 17:16 修改: 2026-06-16 20:16
python3.11 CVE-2026-2297 低危 3.11.2-6+deb12u6 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
python3.11 CVE-2026-3479 低危 3.11.2-6+deb12u6 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
python3.11 CVE-2026-4519 低危 3.11.2-6+deb12u6 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
cups-ppdc CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
gpg-wks-client CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
libgnutls30 CVE-2011-3389 低危 3.7.9-2+deb12u4 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
libgnutls30 CVE-2025-9820 低危 3.7.9-2+deb12u4 3.7.9-2+deb12u6 gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
libgnutls30 CVE-2026-5419 低危 3.7.9-2+deb12u4 3.7.9-2+deb12u7 guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
libgomp1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
dirmngr CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
cups-filters-core-drivers CVE-2025-64503 低危 1.28.17-3+deb12u1 1.28.17-3+deb12u2 cups: cups-filters: cups-filters: Out-of-bounds write via crafted PDF MediaBox

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64503

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-12 22:15 修改: 2026-01-20 18:12
bsdextrautils CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libpython3.11-minimal CVE-2025-13462 低危 3.11.2-6+deb12u6 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
libpython3.11-minimal CVE-2026-12003 低危 3.11.2-6+deb12u6 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-16 17:16 修改: 2026-06-16 20:16
libpython3.11-minimal CVE-2026-2297 低危 3.11.2-6+deb12u6 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
libpython3.11-minimal CVE-2026-3479 低危 3.11.2-6+deb12u6 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
libpython3.11-minimal CVE-2026-4519 低危 3.11.2-6+deb12u6 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
libgs-common CVE-2023-38560 低危 10.0.0~dfsg-11+deb12u7 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38560

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-01 17:15 修改: 2024-11-21 08:13
libgs-common CVE-2024-29511 低危 10.0.0~dfsg-11+deb12u7 ghostscript: ghostscript: arbitrary file read/write through Tesseract configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29511

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-03 19:15 修改: 2025-04-28 17:12
libgs-common CVE-2025-48708 低危 10.0.0~dfsg-11+deb12u7 Ghostscript: Ghostscript Argument Sanitization Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48708

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-23 04:15 修改: 2025-06-20 17:13
libgs-common CVE-2025-59800 低危 10.0.0~dfsg-11+deb12u7 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via crafted document processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59800

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-09-25 19:27
libgs-common CVE-2025-59801 低危 10.0.0~dfsg-11+deb12u7 In Artifex GhostXPS before 10.06.0, there is a stack-based buffer over ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59801

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2026-04-15 00:35
libgs-common CVE-2025-7462 低危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 A vulnerability was found in Artifex GhostPDL up to 3989415a5b8e99b9d1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-12 06:15 修改: 2026-04-15 00:35
gpg-wks-server CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
cups-core-drivers CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
libgs10 CVE-2023-38560 低危 10.0.0~dfsg-11+deb12u7 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38560

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-01 17:15 修改: 2024-11-21 08:13
libgs10 CVE-2024-29511 低危 10.0.0~dfsg-11+deb12u7 ghostscript: ghostscript: arbitrary file read/write through Tesseract configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29511

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-03 19:15 修改: 2025-04-28 17:12
libgs10 CVE-2025-48708 低危 10.0.0~dfsg-11+deb12u7 Ghostscript: Ghostscript Argument Sanitization Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48708

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-23 04:15 修改: 2025-06-20 17:13
libgs10 CVE-2025-59800 低危 10.0.0~dfsg-11+deb12u7 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via crafted document processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59800

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-09-25 19:27
libgs10 CVE-2025-59801 低危 10.0.0~dfsg-11+deb12u7 In Artifex GhostXPS before 10.06.0, there is a stack-based buffer over ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59801

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2026-04-15 00:35
libgs10 CVE-2025-7462 低危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 A vulnerability was found in Artifex GhostPDL up to 3989415a5b8e99b9d1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-12 06:15 修改: 2026-04-15 00:35
python3.11-minimal CVE-2025-13462 低危 3.11.2-6+deb12u6 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
python3.11-minimal CVE-2026-12003 低危 3.11.2-6+deb12u6 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-16 17:16 修改: 2026-06-16 20:16
python3.11-minimal CVE-2026-2297 低危 3.11.2-6+deb12u6 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
python3.11-minimal CVE-2026-3479 低危 3.11.2-6+deb12u6 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
python3.11-minimal CVE-2026-4519 低危 3.11.2-6+deb12u6 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
libcurl3-gnutls CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2024-03-27 08:15 修改: 2025-07-30 19:42
software-properties-common CVE-2020-15709 低危 0.99.30-4.1~deb12u1 Versions of add-apt-repository before 0.98.9.2, 0.96.24.32.14, 0.96.20 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15709

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2020-09-05 04:15 修改: 2024-11-21 05:06
libcurl3-gnutls CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-02-05 10:15 修改: 2025-06-27 19:24
sudo CVE-2005-1119 低危 1.9.13p3-1+deb12u2 Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-1119

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2005-05-02 04:00 修改: 2026-04-16 00:27
sudo CVE-2023-42465 低危 1.9.13p3-1+deb12u2 sudo: Targeted Corruption of Register and Stack Variables

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42465

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-12-22 16:15 修改: 2025-11-04 22:15
libgs10-common CVE-2023-38560 低危 10.0.0~dfsg-11+deb12u7 ghostscript: Integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38560

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-01 17:15 修改: 2024-11-21 08:13
libgs10-common CVE-2024-29511 低危 10.0.0~dfsg-11+deb12u7 ghostscript: ghostscript: arbitrary file read/write through Tesseract configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29511

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-07-03 19:15 修改: 2025-04-28 17:12
libgs10-common CVE-2025-48708 低危 10.0.0~dfsg-11+deb12u7 Ghostscript: Ghostscript Argument Sanitization Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48708

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-05-23 04:15 修改: 2025-06-20 17:13
libgs10-common CVE-2025-59800 低危 10.0.0~dfsg-11+deb12u7 Artifex Ghostscript: Artifex Ghostscript: Denial of Service via crafted document processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59800

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2025-09-25 19:27
systemd CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
systemd CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
systemd CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
systemd CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
systemd CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libgs10-common CVE-2025-59801 低危 10.0.0~dfsg-11+deb12u7 In Artifex GhostXPS before 10.06.0, there is a stack-based buffer over ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59801

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-22 04:15 修改: 2026-04-15 00:35
libgs10-common CVE-2025-7462 低危 10.0.0~dfsg-11+deb12u7 10.0.0~dfsg-11+deb12u8 A vulnerability was found in Artifex GhostPDL up to 3989415a5b8e99b9d1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-12 06:15 修改: 2026-04-15 00:35
libcurl3-gnutls CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-09-12 06:15 修改: 2026-01-20 14:55
libcurl3-gnutls CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
systemd-sysv CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
systemd-sysv CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
systemd-sysv CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
systemd-sysv CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
systemd-sysv CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
sysvinit-utils TEMP-0517018-A83CE6 低危 3.06-4 [sysvinit: no-root option in expert installer exposes locally exploitable security flaw]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl3-gnutls CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
tar CVE-2005-2541 低危 1.34+dfsg-1.2+deb12u1 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
tar TEMP-0290435-0B57B5 低危 1.34+dfsg-1.2+deb12u1 [tar's rmt command may have undesired side effects]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgssapi-krb5-2 CVE-2018-5709 低危 1.20.1-2+deb12u3 krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2018-01-16 09:29 修改: 2024-11-21 04:09
libgssapi-krb5-2 CVE-2024-26458 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libgssapi-krb5-2 CVE-2024-26461 低危 1.20.1-2+deb12u3 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libpython3.11-stdlib CVE-2025-13462 低危 3.11.2-6+deb12u6 cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-12 18:16 修改: 2026-06-11 14:29
udev CVE-2013-4392 低危 252.38-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
udev CVE-2023-31437 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
udev CVE-2023-31438 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
udev CVE-2023-31439 低危 252.38-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
udev CVE-2026-40228 低危 252.38-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
libpython3.11-stdlib CVE-2026-12003 低危 3.11.2-6+deb12u6 To allow builds of Python to be run from an in-tree layout (rather tha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-16 17:16 修改: 2026-06-16 20:16
libpython3.11-stdlib CVE-2026-2297 低危 3.11.2-6+deb12u6 cpython: CPython: Logging Bypass in Legacy .pyc File Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 23:16 修改: 2026-05-01 16:16
util-linux CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
util-linux CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
libpython3.11-stdlib CVE-2026-3479 低危 3.11.2-6+deb12u6 python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-18 19:16 修改: 2026-04-07 18:16
libpython3.11-stdlib CVE-2026-4519 低危 3.11.2-6+deb12u6 python: Python: Command-line option injection in webbrowser.open() via crafted URLs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
util-linux-extra CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
util-linux-extra CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
x11-xkb-utils CVE-2018-15853 低危 7.7+7 libxkbcommon: xkbcomp: Endless recursion in xkbcomp/expr.c resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15853

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-25 21:29 修改: 2024-11-21 03:51
x11-xkb-utils CVE-2018-15859 低危 7.7+7 libxkbcommon: xkbcomp: NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15859

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-25 21:29 修改: 2024-11-21 03:51
x11-xkb-utils CVE-2018-15861 低危 7.7+7 libxkbcommon: xkbcomp: NULL pointer dereference in ExprResolveLhs resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15861

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-25 21:29 修改: 2024-11-21 03:51
x11-xkb-utils CVE-2018-15863 低危 7.7+7 libxkbcommon: xkbcomp: NULL pointer dereference in ResolveStateAndPredicate resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15863

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2018-08-25 21:29 修改: 2024-11-21 03:51
libgssapi-krb5-2 CVE-2026-11850 低危 1.20.1-2+deb12u3 krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-06-11 10:16 修改: 2026-06-12 15:16
libquadmath0 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
xdg-utils CVE-2025-52968 低危 1.1.3-4.1 xdg-utils: xdg-open bypassing SameSite=Strict

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52968

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-23 15:15 修改: 2026-04-15 00:35
libcurl3-gnutls CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libcurl3-gnutls CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
libslang2 CVE-2023-45927 低危 2.3.3-3 S-Lang 2.3.2 was discovered to contain an arithmetic exception via the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45927

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-11-04 19:16
libslang2 CVE-2023-45929 低危 2.3.3-3 S-Lang 2.3.2 was discovered to contain a segmentation fault via the fu ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45929

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-27 04:15 修改: 2025-05-30 16:30
libcurl3-gnutls CVE-2025-15079 低危 7.88.1-10+deb12u14 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
libcurl3-gnutls CVE-2025-15224 低危 7.88.1-10+deb12u14 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
libsmartcols1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
libsmartcols1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
bsdextrautils CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
apt-utils CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
gpgconf CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
bash TEMP-0841856-B18BAF 低危 5.2.15-2+b8 [Privilege escalation possible to other user than root]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils CVE-2022-0563 低危 1:2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
cups-common CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
gpgsm CVE-2022-3219 低危 2.2.40-1.1 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
bsdutils CVE-2025-14104 低危 1:2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
apt CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
cups-server-common CVE-2014-8166 低危 2.4.2-3+deb12u9 cups: code execution via unescape ANSI escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-8166

镜像层: sha256:1c876be30fa1f797e0a947eda08a4710f2c6d41c48bba743064a4c5a55d59f55

发布日期: 2018-01-12 17:29 修改: 2024-11-21 02:18
xserver-common CVE-2022-49737 低危 2:21.1.7-3+deb12u10 In X.Org X server 20.11 through 21.1.16, when a client application use ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-49737

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-16 01:15 修改: 2026-04-15 00:35
libcurl4 CVE-2024-2379 低危 7.88.1-10+deb12u14 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2024-03-27 08:15 修改: 2025-07-30 19:42
libsqlite3-0 CVE-2021-45346 低危 3.40.1-2+deb12u1 sqlite: crafted SQL query allows a malicious user to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2022-02-14 19:15 修改: 2024-11-21 06:32
libsqlite3-0 CVE-2025-29088 低危 3.40.1-2+deb12u1 sqlite: Denial of Service in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2025-04-10 14:15 修改: 2025-09-30 16:59
libsqlite3-0 CVE-2025-70873 低危 3.40.1-2+deb12u1 sqlite: SQLite: Information Disclosure via Crafted ZIP File

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 2026-03-12 19:16 修改: 2026-04-16 21:15
libcurl4 CVE-2025-0725 低危 7.88.1-10+deb12u14 libcurl: Buffer Overflow in libcurl via zlib Integer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0725

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-02-05 10:15 修改: 2025-06-27 19:24
libcurl4 CVE-2025-10148 低危 7.88.1-10+deb12u14 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-09-12 06:15 修改: 2026-01-20 14:55
libheif1 CVE-2023-49463 低危 1.15.1-1+deb12u1 libheif v1.17.5 was discovered to contain a segmentation violation via ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49463

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-12-07 20:15 修改: 2024-11-21 08:33
libheif1 CVE-2024-25269 低危 1.15.1-1+deb12u1 libheif <= 1.17.6 contains a memory leak in the function JpegEncoder:: ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25269

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-03-05 01:15 修改: 2025-03-24 14:40
libheif1 CVE-2026-3949 低危 1.15.1-1+deb12u1 libheif: libheif: Out-of-bounds read via local argument manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3949

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-11 19:16 修改: 2026-04-29 01:00
libip4tc2 CVE-2012-2663 低危 1.8.9-2 iptables: --syn flag bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
libip6tc2 CVE-2012-2663 低危 1.8.9-2 iptables: --syn flag bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
libjbig0 CVE-2017-9937 低危 2.1-6.1 libtiff: memory malloc failure in tif_jbig.c could cause DOS.

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9937

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2017-06-26 12:29 修改: 2026-05-13 00:24
libjbig2dec0 CVE-2023-46361 低危 0.19-3 Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulne ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46361

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-10-31 06:15 修改: 2024-11-21 08:28
libcurl4 CVE-2025-10966 低危 7.88.1-10+deb12u14 curl: Curl missing SFTP host verification with wolfSSH backend

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10966

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2025-11-07 08:15 修改: 2026-06-02 14:16
libssh-gcrypt-4 CVE-2025-4878 低危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Use of uninitialized variable in privatekey_from_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4878

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-22 15:15 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2025-8277 低危 0.10.6-0+deb12u1 0.10.6-0+deb12u2 libssh: Memory Exhaustion via Repeated Key Exchange in libssh

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8277

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-09 12:15 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2026-0965 低危 0.10.6-0+deb12u1 libssh: libssh: Denial of Service via improper configuration file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0965

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-gcrypt-4 CVE-2026-0968 低危 0.10.6-0+deb12u1 libssh: libssh: Denial of Service due to malformed SFTP message

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0968

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
xserver-xorg-core CVE-2022-49737 低危 2:21.1.7-3+deb12u10 In X.Org X server 20.11 through 21.1.16, when a client application use ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-49737

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-03-16 01:15 修改: 2026-04-15 00:35
xserver-xorg-video-nouveau CVE-2018-3979 低危 1:1.0.17-2 A remote denial-of-service vulnerability exists in the way the Nouveau ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3979

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2019-04-01 21:30 修改: 2024-11-21 04:06
xterm CVE-2006-4447 低危 379-1 X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtran ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2006-4447

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2006-08-30 01:04 修改: 2026-04-16 00:27
xterm CVE-2023-40359 低危 379-1 xterm: ReGIS reporting for character-set names containing characters other than alphanumerics or underscore.

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40359

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2023-08-14 17:15 修改: 2024-11-21 08:19
libcurl4 CVE-2025-14017 低危 7.88.1-10+deb12u14 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
libcurl4 CVE-2025-14524 低危 7.88.1-10+deb12u14 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libcurl4 CVE-2025-14819 低危 7.88.1-10+deb12u14 curl: libcurl: Improper certificate validation due to cached TLS settings reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14819

镜像层: sha256:d59444e5885b9e59c9d9ee910e9cef11efe87c494020f65c793e9737523d33bd

发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:51
ffmpeg CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libavfilter8 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libavfilter8 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libswresample4 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libtiff6 CVE-2026-36849 未知 4.5.0-6+deb12u2 [Denial of Service via large SamplesPerPixel tag]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-36849

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswresample4 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libswresample4 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavfilter8 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libblkid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libblkid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libjq1 CVE-2026-47770 未知 1.6-2.1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47770

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libjq1 CVE-2026-49839 未知 1.6-2.1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49839

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ffmpeg CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavdevice59 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libavdevice59 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libssh2-1 CVE-2025-15661 未知 1.10.0-3+b1 libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15661

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssh2-1 CVE-2026-55199 未知 1.10.0-3+b1 libssh2 through 1.11.1, fixed in commit 1762685, contains a pre-authen ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55199

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssh2-1 CVE-2026-55200 未知 1.10.0-3+b1 libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bou ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55200

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavdevice59 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libde265-0 CVE-2026-49295 未知 1.0.11-1+deb12u2 libde265 is an open source implementation of the h.265 video codec. Pr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49295

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libde265-0 CVE-2026-49337 未知 1.0.11-1+deb12u2 libde265 is an open source implementation of the h.265 video codec. Pr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49337

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libde265-0 CVE-2026-49346 未知 1.0.11-1+deb12u2 libde265 is an open source implementation of the h.265 video codec. Pr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49346

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils CVE-2026-53615 未知 1:2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdextrautils CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdextrautils CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils CVE-2026-53613 未知 1:2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gir1.2-packagekitglib-1.0 CVE-2026-10294 未知 1.2.6-5 A vulnerability has been found in PackageKit up to 1.3.5. Affected is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10294

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 22:16 修改: 2026-06-02 13:03
libavformat59 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libavformat59 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libavformat59 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mount CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
mount CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ffmpeg CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libpackagekit-glib2-18 CVE-2026-10294 未知 1.2.6-5 A vulnerability has been found in PackageKit up to 1.3.5. Affected is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10294

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 22:16 修改: 2026-06-02 13:03
libexpat1 CVE-2026-56131 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpostproc56 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libpostproc56 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libswscale6 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
util-linux CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libswscale6 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
packagekit CVE-2026-10294 未知 1.2.6-5 A vulnerability has been found in PackageKit up to 1.3.5. Affected is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10294

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-01 22:16 修改: 2026-06-02 13:03
libswscale6 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libpostproc56 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux-extra CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux-extra CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56132 未知 2.5.0-1+deb12u1 In libexpat before 2.8.2, there is a heap-based buffer overflow in doP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libuuid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56403 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in storeAtts.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56404 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in addBinding.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56405 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in getAttributeId.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56406 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in XML_ParseBuffer becau ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmbedcrypto7 CVE-2024-28755 未知 2.28.3-1 An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When an SSL co ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28755

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-04-03 03:15 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2026-34874 未知 2.28.3-1 An issue was discovered in Mbed TLS through 3.6.5 and 4.x through 4.0. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34874

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-01 19:16 修改: 2026-06-05 19:38
libmbedcrypto7 CVE-2026-34876 未知 2.28.3-1 An issue was discovered in Mbed TLS 3.x before 3.6.6. An out-of-bounds ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34876

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-02 16:16 修改: 2026-06-05 19:38
libexpat1 CVE-2026-56407 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56408 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 has an integer overflow in copyString.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libheif1 CVE-2026-47178 未知 1.15.1-1+deb12u1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47178

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libheif1 CVE-2026-49271 未知 1.15.1-1+deb12u1 libheif is a HEIF and AVIF file format decoder and encoder. Prior to v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49271

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nginx TEMP-1138794-BADE22 未知 1.22.1-9+deb12u2 1.22.1-9+deb12u8 [HTTP/2 Bomb denial of service]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libidn12 TEMP-0000000-E5FBCA 未知 1.41-1 [ToUnicode read-out-bounds]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0000000-E5FBCA

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56409 未知 2.5.0-1+deb12u1 xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libxml2 DSA-5990-1 未知 2.9.14+dfsg-1.3~deb12u2 2.9.14+dfsg-1.3~deb12u4 libxml2 - security update

漏洞详情:

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmfx1 CVE-2024-21783 未知 22.5.4-1 Integer overflow for some Intel(R) VPL software before version 24.1.4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21783

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-13 21:15 修改: 2026-04-15 00:35
libsmartcols1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsmartcols1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmfx1 CVE-2024-21808 未知 22.5.4-1 Improper buffer restrictions in some Intel(R) VPL software before vers ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21808

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-13 21:15 修改: 2026-04-15 00:35
libmfx1 CVE-2024-28030 未知 22.5.4-1 NULL pointer dereference in some Intel(R) VPL software before version ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28030

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-13 21:15 修改: 2026-04-15 00:35
libmfx1 CVE-2024-28051 未知 22.5.4-1 Out-of-bounds read in some Intel(R) VPL software before version 24.1.4 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28051

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-13 21:15 修改: 2026-04-15 00:35
libexpat1 CVE-2026-56410 未知 2.5.0-1+deb12u1 xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSyste ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56411 未知 2.5.0-1+deb12u1 xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDe ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 CVE-2026-56412 未知 2.5.0-1+deb12u1 libexpat before 2.8.2 does not consider XML_TOK_DATA_CHARS in doCdataS ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
jq CVE-2026-47770 未知 1.6-2.1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47770

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmount1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libmount1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:c26f7785615ced677e5e8a21a84b8b17281d84c4b4c417d8f7eb15f4f420252e

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
jq CVE-2026-49839 未知 1.6-2.1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49839

镜像层: sha256:a6fb9b710d6cd9b2ca8993689fbd72be703a83385616ad3aed3eb1bc115da8c8

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavcodec59 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
nginx-common TEMP-1138794-BADE22 未知 1.22.1-9+deb12u2 1.22.1-9+deb12u8 [HTTP/2 Bomb denial of service]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-1138794-BADE22

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavcodec59 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
nodejs CVE-2026-48615 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48617 未知 18.20.6-1nodesource1 A flaw in Node.js Permission Model enforcement allows Bypass via `proc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48617

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48618 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48618

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48619 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48619

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48928 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48928

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48930 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48930

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48931 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48931

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48933 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48933

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48934 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48934

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48935 未知 18.20.6-1nodesource1

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48935

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nodejs CVE-2026-48937 未知 18.20.6-1nodesource1 A flaw in Node.js HTTP/2 server API can cause servers to keep acceptin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48937

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libfdisk1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libfdisk1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavcodec59 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libavutil57 CVE-2024-35369 未知 7:5.1.6-0+deb12u1 In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c m ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35369

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 17:15 修改: 2025-06-03 16:06
libavutil57 CVE-2024-36615 未知 7:5.1.6-0+deb12u1 FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. Thi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-36615

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-29 19:15 修改: 2025-06-03 16:05
libavutil57 CVE-2026-8461 未知 7:5.1.6-0+deb12u1 An out-of-bounds write vulnerability in FFmpeg's libavcodec library, s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8461

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
Node.js (node-pkg)
低危漏洞:3 中危漏洞:8 高危漏洞:20 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2024-11-08 05:15 修改: 2026-04-15 00:35
glob CVE-2025-64756 高危 10.4.2 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-17 18:15 修改: 2025-12-02 19:34
minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-20 03:16 修改: 2026-03-06 21:32
minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:21
minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:16
minimatch CVE-2026-26996 高危 5.1.6 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-20 03:16 修改: 2026-03-06 21:32
minimatch CVE-2026-27903 高危 5.1.6 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:21
minimatch CVE-2026-27904 高危 5.1.6 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:16
minimatch CVE-2026-26996 高危 9.0.5 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-20 03:16 修改: 2026-03-06 21:32
minimatch CVE-2026-27903 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:21
minimatch CVE-2026-27904 高危 9.0.5 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-26 02:16 修改: 2026-02-27 17:16
path-to-regexp CVE-2026-4867 高危 0.1.12 0.1.13 path-to-regexp: path-to-regexp: Denial of Service via catastrophic backtracking from malformed URL parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4867

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-03-26 17:16 修改: 2026-04-16 18:01
socket.io-parser CVE-2026-33151 高危 4.2.4 3.3.5, 3.4.4, 4.2.6 socket.io: Socket.IO: Denial of Service due to excessive buffering of specially crafted packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33151

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-03-20 21:17 修改: 2026-04-14 18:22
tar CVE-2026-23745 高危 6.2.1 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-16 22:16 修改: 2026-02-18 16:20
tar CVE-2026-23950 高危 6.2.1 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-20 01:15 修改: 2026-02-18 15:50
tar CVE-2026-24842 高危 6.2.1 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 01:16 修改: 2026-02-02 14:30
tar CVE-2026-26960 高危 6.2.1 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-20 02:16 修改: 2026-02-20 19:24
tar CVE-2026-29786 高危 6.2.1 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-07 16:15 修改: 2026-03-11 21:50
tar CVE-2026-31802 高危 6.2.1 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-10 07:44 修改: 2026-03-18 18:13
ws CVE-2026-48779 高危 8.17.1 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws is an open source WebSocket client and server for Node.js. All vers ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion CVE-2026-33750 中危 2.0.2 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-03-27 15:16 修改: 2026-04-22 14:23
brace-expansion CVE-2026-33750 中危 1.1.12 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-03-27 15:16 修改: 2026-04-22 14:23
qs CVE-2025-15284 中危 6.13.0 6.14.1 qs: qs: Denial of Service via improper input validation in array parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15284

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2025-12-29 23:15 修改: 2026-02-26 19:57
qs CVE-2026-8723 中危 6.13.0 6.15.2 ### Summary `qs.stringify` throws `TypeError` when called with `arr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8723

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-05-17 00:16 修改: 2026-05-18 20:23
brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 15:16 修改: 2026-04-22 14:23
tar CVE-2026-53655 中危 6.2.1 7.5.16 node-tar applies PAX size override to intermediary GNU long-name/long-link headers, causing tar parser interpretation differential (file smuggling)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-12 20:16 修改: 2026-05-19 20:04
ws CVE-2026-45736 中危 8.17.1 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-05-15 15:16 修改: 2026-05-19 14:39
diff CVE-2026-24001 低危 5.2.0 8.0.3, 5.2.2, 4.0.4, 3.5.1 jsdiff: denial of service vulnerability in parsePatch and applyPatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-22 03:15 修改: 2026-03-04 15:23
qs CVE-2026-2391 低危 6.13.0 6.14.2 qs: qs's arrayLimit bypass in comma parsing allows denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2391

镜像层: sha256:0e42dfe6149d2eb34c639f2aad873b169097f9a0600a219b05ae7872323dc422

发布日期: 2026-02-12 05:17 修改: 2026-02-24 20:13
brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-09 19:15 修改: 2026-04-29 01:00
usr/bin/docker (gobinary)
低危漏洞:2 中危漏洞:21 高危漏洞:14 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2025-68121 严重 v1.24.5 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
stdlib CVE-2025-61726 高危 v1.24.5 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61729 高危 v1.24.5 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.24.5 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.24.5 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.24.5 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.24.5 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib CVE-2026-39820 高危 v1.24.5 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib CVE-2026-39823 高危 v1.24.5 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39825 高危 v1.24.5 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39836 高危 v1.24.5 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib CVE-2026-42499 高危 v1.24.5 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42504 高危 v1.24.5 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-47906 中危 v1.24.5 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib CVE-2025-47907 中危 v1.24.5 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib CVE-2025-47912 中危 v1.24.5 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58183 中危 v1.24.5 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58185 中危 v1.24.5 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58187 中危 v1.24.5 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.24.5 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.24.5 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.24.5 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.24.5 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.24.5 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.24.5 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61728 中危 v1.24.5 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61730 中危 v1.24.5 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.24.5 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-27145 中危 v1.24.5 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-32282 中危 v1.24.5 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.24.5 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.24.5 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39826 中危 v1.24.5 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42507 中危 v1.24.5 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-58186 低危 v1.24.5 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.24.5 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32
usr/bin/docker-proxy (gobinary)
低危漏洞:2 中危漏洞:26 高危漏洞:24 严重漏洞:1
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
stdlib CVE-2025-68121 严重 v1.24.5 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
github.com/docker/docker CVE-2026-41567 高危 28.3.2 Moby is an open source container framework. In versions prior to 29.5. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41567

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 02:17 修改: 2026-06-05 16:01
github.com/docker/docker CVE-2026-42306 高危 28.3.2 Moby is an open source container framework. In Docker Engine prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42306

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
golang.org/x/net CVE-2026-25680 高危 v0.39.0 0.55.0 Parsing arbitrary HTML can consume excessive CPU time, possibly leadin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:47
golang.org/x/net CVE-2026-25681 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25681

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:30
golang.org/x/net CVE-2026-27136 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27136

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:27
golang.org/x/net CVE-2026-33814 高危 v0.39.0 0.53.0 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
golang.org/x/net CVE-2026-39821 高危 v0.39.0 0.55.0 golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39821

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:26
golang.org/x/net CVE-2026-42502 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:09
golang.org/x/net CVE-2026-42506 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:06
github.com/docker/docker CVE-2026-34040 高危 28.3.2 29.3.1 Moby: Moby: Authorization bypass vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34040

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
stdlib CVE-2025-61726 高危 v1.24.5 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61729 高危 v1.24.5 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.24.5 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.24.5 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.24.5 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.24.5 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib CVE-2026-39820 高危 v1.24.5 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib CVE-2026-39823 高危 v1.24.5 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39825 高危 v1.24.5 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39836 高危 v1.24.5 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib CVE-2026-42499 高危 v1.24.5 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42504 高危 v1.24.5 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/docker/docker CVE-2026-33997 中危 28.3.2 29.3.1 moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41568 中危 28.3.2 github.com/docker/docker: github.com/moby/moby: Moby: Denial of Service via race condition in docker cp mount setup

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/docker/docker CVE-2025-54388 中危 28.3.2 28.3.3 github.com/moby/moby: Moby's Firewalld reload makes container ports accessible

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-54388

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-30 14:15 修改: 2025-09-08 16:34
golang.org/x/net CVE-2025-47911 中危 v0.39.0 0.45.0 golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47911

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:48
golang.org/x/net CVE-2025-58190 中危 v0.39.0 0.45.0 golang.org/x/net/html: Infinite parsing loop in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58190

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:46
stdlib CVE-2025-47906 中危 v1.24.5 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib CVE-2025-47907 中危 v1.24.5 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib CVE-2025-47912 中危 v1.24.5 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58183 中危 v1.24.5 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58185 中危 v1.24.5 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58187 中危 v1.24.5 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.24.5 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.24.5 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.24.5 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.24.5 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.24.5 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.24.5 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61728 中危 v1.24.5 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61730 中危 v1.24.5 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.24.5 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-27145 中危 v1.24.5 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-32282 中危 v1.24.5 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.24.5 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.24.5 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39826 中危 v1.24.5 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42507 中危 v1.24.5 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-58186 低危 v1.24.5 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.24.5 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32
golang.org/x/sys CVE-2026-39824 未知 v0.33.0 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 20:16 修改: 2026-05-27 14:16
usr/bin/dockerd (gobinary)
低危漏洞:2 中危漏洞:42 高危漏洞:43 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.72.2 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
stdlib CVE-2025-68121 严重 v1.24.5 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
github.com/containerd/containerd/v2 CVE-2026-53488 高危 v2.1.3 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-53488 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53488

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53489 高危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-53489 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53492 高危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-53492 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53492

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/docker/docker CVE-2026-34040 高危 28.3.2 29.3.1 Moby: Moby: Authorization bypass vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34040

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41567 高危 28.3.2 Moby is an open source container framework. In versions prior to 29.5. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41567

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 02:17 修改: 2026-06-05 16:01
github.com/docker/docker CVE-2026-42306 高危 28.3.2 Moby is an open source container framework. In Docker Engine prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42306

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/moby/buildkit CVE-2026-33747 高危 v0.23.2 0.28.1 BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33747

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 01:16 修改: 2026-04-01 14:34
github.com/moby/buildkit CVE-2026-33748 高危 v0.23.2 0.28.1 github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33748

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 15:16 修改: 2026-04-20 12:37
github.com/opencontainers/selinux CVE-2025-52881 高危 v1.12.0 1.13.0 runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52881

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-06 21:15 修改: 2025-12-03 18:37
go.opentelemetry.io/otel/sdk CVE-2026-24051 高危 v1.35.0 1.40.0 OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24051

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-02 23:16 修改: 2026-06-15 17:18
go.opentelemetry.io/otel/sdk CVE-2026-39883 高危 v1.35.0 1.43.0 github.com/open-telemetry/opentelemetry-go: OpenTelemetry-Go: Arbitrary code execution via PATH hijacking on BSD/Solaris

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39883

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-10 21:16
golang.org/x/crypto CVE-2025-47913 高危 v0.37.0 0.43.0 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-13 22:15 修改: 2026-01-09 15:32
golang.org/x/crypto CVE-2026-39827 高危 v0.37.0 0.52.0 An authenticated SSH client that repeatedly opened channels which were ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39827

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-26 17:58
golang.org/x/crypto CVE-2026-39828 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39828

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39829 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39829

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39830 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39830

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39835 高危 v0.37.0 0.52.0 SSH servers which use CertChecker as a public key callback without set ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39835

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:56
golang.org/x/crypto CVE-2026-42508 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42508

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:47
golang.org/x/crypto CVE-2026-46595 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46595

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/crypto CVE-2026-46597 高危 v0.37.0 0.52.0 An incorrectly placed cast from bytes to int allowed for server-side p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46597

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/net CVE-2026-25680 高危 v0.39.0 0.55.0 Parsing arbitrary HTML can consume excessive CPU time, possibly leadin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:47
golang.org/x/net CVE-2026-25681 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25681

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:30
golang.org/x/net CVE-2026-27136 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27136

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:27
golang.org/x/net CVE-2026-33814 高危 v0.39.0 0.53.0 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
golang.org/x/net CVE-2026-39821 高危 v0.39.0 0.55.0 golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39821

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:26
golang.org/x/net CVE-2026-42502 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:09
golang.org/x/net CVE-2026-42506 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:06
github.com/containerd/containerd/v2 CVE-2024-25621 高危 v2.1.3 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd local privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25621

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-06 19:15 修改: 2025-12-31 02:29
github.com/containerd/containerd/v2 CVE-2026-46680 高危 v2.1.3 2.0.9, 2.2.4, 2.3.1 containerd user ID handling bypass allows runAsNonRoot evasion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stdlib CVE-2025-61726 高危 v1.24.5 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61729 高危 v1.24.5 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.24.5 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.24.5 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.24.5 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.24.5 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib CVE-2026-39820 高危 v1.24.5 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib CVE-2026-39823 高危 v1.24.5 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39825 高危 v1.24.5 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39836 高危 v1.24.5 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib CVE-2026-42499 高危 v1.24.5 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42504 高危 v1.24.5 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/docker/docker CVE-2025-54388 中危 28.3.2 28.3.3 github.com/moby/moby: Moby's Firewalld reload makes container ports accessible

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-54388

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-30 14:15 修改: 2025-09-08 16:34
github.com/docker/docker CVE-2026-33997 中危 28.3.2 29.3.1 moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41568 中危 28.3.2 github.com/docker/docker: github.com/moby/moby: Moby: Denial of Service via race condition in docker cp mount setup

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
golang.org/x/net CVE-2025-47911 中危 v0.39.0 0.45.0 golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47911

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:48
golang.org/x/net CVE-2025-58190 中危 v0.39.0 0.45.0 golang.org/x/net/html: Infinite parsing loop in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58190

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:46
github.com/in-toto/in-toto-golang GHSA-pmwq-pjrm-6p5r 中危 v0.9.0 0.11.0 in-toto-golang and in-toto-python have inconsistent negation behavior

漏洞详情: https://github.com/advisories/GHSA-pmwq-pjrm-6p5r

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-08 22:24 修改: 2026-05-08 22:24
github.com/containerd/containerd/v2 CVE-2026-47262 中危 v2.1.3 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-47262 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47262

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-50195 中危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-50195 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50195

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containernetworking/plugins CVE-2025-67499 中危 v1.7.1 1.9.0 CNI portmap plugin: github.com/containernetworking/plugins/plugins/meta/portmap: CNI portmap plugin: HostPort forwarding vulnerability allows traffic interception

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-67499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-10 00:16 修改: 2026-03-17 20:30
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp CVE-2026-39882 中危 v1.35.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
golang.org/x/crypto CVE-2025-47914 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47914

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:36
golang.org/x/crypto CVE-2025-58181 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58181

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:29
golang.org/x/crypto CVE-2026-39831 中危 v0.37.0 0.52.0 The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nis ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39831

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39832 中危 v0.37.0 0.52.0 When adding a key to a remote agent constraint extensions such as rest ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39832

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:11
golang.org/x/crypto CVE-2026-39833 中危 v0.37.0 0.52.0 The in-memory keyring returned by NewKeyring() silently accepted keys ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39833

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:04
golang.org/x/crypto CVE-2026-39834 中危 v0.37.0 0.52.0 When writing data larger than 4GB in a single Write call on an SSH cha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39834

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:03
golang.org/x/crypto CVE-2026-46598 中危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/agent: golang: golang.org/x/crypto/ssh/agent: Denial of Service via malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46598

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:34
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp CVE-2026-39882 中危 v1.35.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs GHSA-xmrv-pmrh-hhx2 中危 v1.32.0 1.65.0 Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

漏洞详情: https://github.com/advisories/GHSA-xmrv-pmrh-hhx2

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 00:18 修改: 2026-04-08 00:18
github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream GHSA-xmrv-pmrh-hhx2 中危 v1.6.3 1.7.8 Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

漏洞详情: https://github.com/advisories/GHSA-xmrv-pmrh-hhx2

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 00:18 修改: 2026-04-08 00:18
github.com/containerd/containerd/v2 CVE-2025-64329 中危 v2.1.3 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd: Memory exhaustion via CRI Attach implementation goroutine leaks

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64329

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 05:16 修改: 2025-12-31 18:34
stdlib CVE-2025-47906 中危 v1.24.5 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib CVE-2025-47907 中危 v1.24.5 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib CVE-2025-47912 中危 v1.24.5 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58183 中危 v1.24.5 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58185 中危 v1.24.5 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58187 中危 v1.24.5 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.24.5 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.24.5 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.24.5 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.24.5 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.24.5 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.24.5 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61728 中危 v1.24.5 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61730 中危 v1.24.5 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.24.5 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-27145 中危 v1.24.5 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-32282 中危 v1.24.5 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.24.5 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.24.5 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39826 中危 v1.24.5 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42507 中危 v1.24.5 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-58186 低危 v1.24.5 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.24.5 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32
golang.org/x/sys CVE-2026-39824 未知 v0.33.0 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 20:16 修改: 2026-05-27 14:16
usr/libexec/docker/cli-plugins/docker-buildx (gobinary)
低危漏洞:2 中危漏洞:41 高危漏洞:44 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.72.2 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
stdlib CVE-2025-68121 严重 v1.24.4 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
github.com/containerd/containerd/v2 CVE-2026-53488 高危 v2.1.1 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-53488 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53488

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53489 高危 v2.1.1 2.1.9, 2.2.5, 2.3.2 CVE-2026-53489 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53492 高危 v2.1.1 2.1.9, 2.2.5, 2.3.2 CVE-2026-53492 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53492

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/docker/cli CVE-2025-15558 高危 v28.2.2+incompatible 29.2.0 docker/cli: Docker CLI for Windows: Privilege escalation via malicious plugin binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15558

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 17:16 修改: 2026-03-09 17:38
github.com/docker/docker CVE-2026-34040 高危 v28.2.2+incompatible 29.3.1 Moby: Moby: Authorization bypass vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34040

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41567 高危 v28.2.2+incompatible Moby is an open source container framework. In versions prior to 29.5. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41567

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 02:17 修改: 2026-06-05 16:01
github.com/docker/docker CVE-2026-42306 高危 v28.2.2+incompatible Moby is an open source container framework. In Docker Engine prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42306

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/moby/buildkit CVE-2026-33747 高危 v0.23.0 0.28.1 BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33747

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 01:16 修改: 2026-04-01 14:34
github.com/moby/buildkit CVE-2026-33748 高危 v0.23.0 0.28.1 github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33748

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 15:16 修改: 2026-04-20 12:37
github.com/moby/spdystream CVE-2026-35469 高危 v0.5.0 0.5.1 Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35469

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 22:16 修改: 2026-04-29 21:04
go.opentelemetry.io/otel/sdk CVE-2026-24051 高危 v1.35.0 1.40.0 OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24051

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-02 23:16 修改: 2026-06-15 17:18
go.opentelemetry.io/otel/sdk CVE-2026-39883 高危 v1.35.0 1.43.0 github.com/open-telemetry/opentelemetry-go: OpenTelemetry-Go: Arbitrary code execution via PATH hijacking on BSD/Solaris

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39883

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-10 21:16
golang.org/x/crypto CVE-2025-47913 高危 v0.37.0 0.43.0 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-13 22:15 修改: 2026-01-09 15:32
golang.org/x/crypto CVE-2026-39827 高危 v0.37.0 0.52.0 An authenticated SSH client that repeatedly opened channels which were ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39827

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-26 17:58
golang.org/x/crypto CVE-2026-39828 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39828

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39829 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39829

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39830 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39830

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39835 高危 v0.37.0 0.52.0 SSH servers which use CertChecker as a public key callback without set ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39835

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:56
golang.org/x/crypto CVE-2026-42508 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42508

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:47
golang.org/x/crypto CVE-2026-46595 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46595

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/crypto CVE-2026-46597 高危 v0.37.0 0.52.0 An incorrectly placed cast from bytes to int allowed for server-side p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46597

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/net CVE-2026-25680 高危 v0.39.0 0.55.0 Parsing arbitrary HTML can consume excessive CPU time, possibly leadin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:47
golang.org/x/net CVE-2026-25681 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25681

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:30
golang.org/x/net CVE-2026-27136 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27136

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:27
golang.org/x/net CVE-2026-33814 高危 v0.39.0 0.53.0 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
golang.org/x/net CVE-2026-39821 高危 v0.39.0 0.55.0 golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39821

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:26
golang.org/x/net CVE-2026-42502 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:09
golang.org/x/net CVE-2026-42506 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:06
github.com/containerd/containerd/v2 CVE-2024-25621 高危 v2.1.1 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd local privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25621

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-06 19:15 修改: 2025-12-31 02:29
github.com/containerd/containerd/v2 CVE-2026-46680 高危 v2.1.1 2.0.9, 2.2.4, 2.3.1 containerd user ID handling bypass allows runAsNonRoot evasion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stdlib CVE-2025-61726 高危 v1.24.4 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61729 高危 v1.24.4 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.24.4 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.24.4 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.24.4 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.24.4 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.24.4 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.24.4 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib CVE-2026-39820 高危 v1.24.4 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib CVE-2026-39823 高危 v1.24.4 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39825 高危 v1.24.4 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39836 高危 v1.24.4 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib CVE-2026-42499 高危 v1.24.4 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42504 高危 v1.24.4 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/in-toto/in-toto-golang GHSA-pmwq-pjrm-6p5r 中危 v0.9.0 0.11.0 in-toto-golang and in-toto-python have inconsistent negation behavior

漏洞详情: https://github.com/advisories/GHSA-pmwq-pjrm-6p5r

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-08 22:24 修改: 2026-05-08 22:24
github.com/containerd/containerd/v2 CVE-2026-47262 中危 v2.1.1 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-47262 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47262

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
golang.org/x/net CVE-2025-47911 中危 v0.39.0 0.45.0 golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47911

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:48
golang.org/x/net CVE-2025-58190 中危 v0.39.0 0.45.0 golang.org/x/net/html: Infinite parsing loop in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58190

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:46
github.com/containerd/containerd/v2 CVE-2026-50195 中危 v2.1.1 2.1.9, 2.2.5, 2.3.2 CVE-2026-50195 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50195

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2025-64329 中危 v2.1.1 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd: Memory exhaustion via CRI Attach implementation goroutine leaks

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64329

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 05:16 修改: 2025-12-31 18:34
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp CVE-2026-39882 中危 v1.31.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp CVE-2026-39882 中危 v1.35.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
golang.org/x/crypto CVE-2025-47914 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47914

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:36
golang.org/x/crypto CVE-2025-58181 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58181

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:29
golang.org/x/crypto CVE-2026-39831 中危 v0.37.0 0.52.0 The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nis ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39831

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39832 中危 v0.37.0 0.52.0 When adding a key to a remote agent constraint extensions such as rest ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39832

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:11
golang.org/x/crypto CVE-2026-39833 中危 v0.37.0 0.52.0 The in-memory keyring returned by NewKeyring() silently accepted keys ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39833

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:04
golang.org/x/crypto CVE-2026-39834 中危 v0.37.0 0.52.0 When writing data larger than 4GB in a single Write call on an SSH cha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39834

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:03
golang.org/x/crypto CVE-2026-46598 中危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/agent: golang: golang.org/x/crypto/ssh/agent: Denial of Service via malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46598

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:34
github.com/docker/docker CVE-2025-54388 中危 v28.2.2+incompatible 28.3.3 github.com/moby/moby: Moby's Firewalld reload makes container ports accessible

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-54388

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-30 14:15 修改: 2025-09-08 16:34
github.com/docker/docker CVE-2026-33997 中危 v28.2.2+incompatible 29.3.1 moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41568 中危 v28.2.2+incompatible github.com/docker/docker: github.com/moby/moby: Moby: Denial of Service via race condition in docker cp mount setup

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/go-viper/mapstructure/v2 CVE-2025-11065 中危 v2.0.0 2.4.0 github.com/go-viper/mapstructure/v2: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11065

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-26 20:16 修改: 2026-04-15 00:35
github.com/go-viper/mapstructure/v2 GHSA-fv92-fjc5-jj9h 中危 v2.0.0 2.3.0 mapstructure May Leak Sensitive Information in Logs When Processing Malformed Data

漏洞详情: https://github.com/advisories/GHSA-fv92-fjc5-jj9h

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-06-27 16:24 修改: 2025-06-27 16:24
stdlib CVE-2025-47906 中危 v1.24.4 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib CVE-2025-47907 中危 v1.24.4 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib CVE-2025-47912 中危 v1.24.4 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58183 中危 v1.24.4 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58185 中危 v1.24.4 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58187 中危 v1.24.4 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.24.4 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.24.4 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.24.4 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.24.4 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.24.4 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.24.4 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61728 中危 v1.24.4 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61730 中危 v1.24.4 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.24.4 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-27145 中危 v1.24.4 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-32282 中危 v1.24.4 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.24.4 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.24.4 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39826 中危 v1.24.4 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42507 中危 v1.24.4 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-58186 低危 v1.24.4 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.24.4 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32
golang.org/x/sys CVE-2026-39824 未知 v0.33.0 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 20:16 修改: 2026-05-27 14:16
usr/libexec/docker/cli-plugins/docker-compose (gobinary)
低危漏洞:2 中危漏洞:40 高危漏洞:45 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.73.0 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
stdlib CVE-2025-68121 严重 v1.24.5 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
github.com/containerd/containerd/v2 CVE-2026-53488 高危 v2.1.3 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-53488 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53488

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53489 高危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-53489 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53489

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2026-53492 高危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-53492 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53492

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/docker/cli CVE-2025-15558 高危 v28.3.1+incompatible 29.2.0 docker/cli: Docker CLI for Windows: Privilege escalation via malicious plugin binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15558

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-04 17:16 修改: 2026-03-09 17:38
github.com/docker/compose/v2 CVE-2025-62725 高危 v2.38.2 2.40.2 docker-compose: Docker Compose Vulnerable to Path Traversal via OCI Artifact Layer Annotations

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-27 21:15 修改: 2026-04-15 00:35
github.com/docker/docker CVE-2026-34040 高危 v28.3.1+incompatible 29.3.1 Moby: Moby: Authorization bypass vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34040

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41567 高危 v28.3.1+incompatible Moby is an open source container framework. In versions prior to 29.5. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41567

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-05 02:17 修改: 2026-06-05 16:01
github.com/docker/docker CVE-2026-42306 高危 v28.3.1+incompatible Moby is an open source container framework. In Docker Engine prior to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42306

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/moby/buildkit CVE-2026-33747 高危 v0.23.2 0.28.1 BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33747

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 01:16 修改: 2026-04-01 14:34
github.com/moby/buildkit CVE-2026-33748 高危 v0.23.2 0.28.1 github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33748

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-27 15:16 修改: 2026-04-20 12:37
github.com/moby/spdystream CVE-2026-35469 高危 v0.5.0 0.5.1 Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35469

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-16 22:16 修改: 2026-04-29 21:04
go.opentelemetry.io/otel/sdk CVE-2026-24051 高危 v1.35.0 1.40.0 OpenTelemetry Go SDK Vulnerable to Arbitrary Code Execution via PATH Hijacking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24051

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-02 23:16 修改: 2026-06-15 17:18
go.opentelemetry.io/otel/sdk CVE-2026-39883 高危 v1.35.0 1.43.0 github.com/open-telemetry/opentelemetry-go: OpenTelemetry-Go: Arbitrary code execution via PATH hijacking on BSD/Solaris

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39883

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-10 21:16
golang.org/x/crypto CVE-2025-47913 高危 v0.37.0 0.43.0 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47913

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-13 22:15 修改: 2026-01-09 15:32
golang.org/x/crypto CVE-2026-39827 高危 v0.37.0 0.52.0 An authenticated SSH client that repeatedly opened channels which were ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39827

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-26 17:58
golang.org/x/crypto CVE-2026-39828 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Unauthorized command execution via discarded SSH permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39828

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39829 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via crafted public key with excessive parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39829

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39830 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via resource leak from unsolicited SSH responses

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39830

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39835 高危 v0.37.0 0.52.0 SSH servers which use CertChecker as a public key callback without set ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39835

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:56
golang.org/x/crypto CVE-2026-42508 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/knownhosts: golang: golang.org/x/crypto/ssh/knownhosts: Revocation bypass via unchecked SignatureKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42508

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:47
golang.org/x/crypto CVE-2026-46595 高危 v0.37.0 0.52.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Authorization bypass due to skipped source-address validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46595

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/crypto CVE-2026-46597 高危 v0.37.0 0.52.0 An incorrectly placed cast from bytes to int allowed for server-side p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46597

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:44
golang.org/x/net CVE-2026-25680 高危 v0.39.0 0.55.0 Parsing arbitrary HTML can consume excessive CPU time, possibly leadin ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:47
golang.org/x/net CVE-2026-25681 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25681

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:30
golang.org/x/net CVE-2026-27136 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27136

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:27
golang.org/x/net CVE-2026-33814 高危 v0.39.0 0.53.0 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
golang.org/x/net CVE-2026-39821 高危 v0.39.0 0.55.0 golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via incorrect Punycode label processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39821

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 15:26
golang.org/x/net CVE-2026-42502 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42502

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:09
golang.org/x/net CVE-2026-42506 高危 v0.39.0 0.55.0 Parsing arbitrary HTML which is then rendered using Render can result ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42506

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 16:16 修改: 2026-05-29 19:06
github.com/containerd/containerd/v2 CVE-2024-25621 高危 v2.1.3 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd local privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25621

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-06 19:15 修改: 2025-12-31 02:29
github.com/containerd/containerd/v2 CVE-2026-46680 高危 v2.1.3 2.0.9, 2.2.4, 2.3.1 containerd user ID handling bypass allows runAsNonRoot evasion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46680

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stdlib CVE-2025-61726 高危 v1.24.5 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61729 高危 v1.24.5 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.24.5 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.24.5 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.24.5 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.24.5 1.25.10, 1.26.3 net: golang: Go net package: Denial of Service via long CNAME response in LookupCNAME

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.24.5 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 14:41
stdlib CVE-2026-39820 高危 v1.24.5 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:10
stdlib CVE-2026-39823 高危 v1.24.5 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39825 高危 v1.24.5 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:58
stdlib CVE-2026-39836 高危 v1.24.5 1.25.10, 1.26.3 ELSA-2026-22112: go-toolset:ol8 security update (IMPORTANT)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 15:11
stdlib CVE-2026-42499 高危 v1.24.5 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42504 高危 v1.24.5 1.25.11, 1.26.4 Decoding a maliciously-crafted MIME header containing many invalid enc ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42504

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
github.com/containerd/containerd/v2 CVE-2026-47262 中危 v2.1.3 2.0.10, 2.1.9, 2.2.5, 2.3.2 CVE-2026-47262 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47262

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
golang.org/x/net CVE-2025-47911 中危 v0.39.0 0.45.0 golang.org/x/net/html: Quadratic parsing complexity in golang.org/x/net/html

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47911

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:48
golang.org/x/net CVE-2025-58190 中危 v0.39.0 0.45.0 golang.org/x/net/html: Infinite parsing loop in golang.org/x/net

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58190

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-02-05 18:16 修改: 2026-02-18 17:46
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp CVE-2026-39882 中危 v1.31.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp CVE-2026-39882 中危 v1.35.0 1.43.0 OpenTelemetry-Go is the Go implementation of OpenTelemetry. Prior to 1 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39882

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 21:17 修改: 2026-04-09 18:39
github.com/docker/docker CVE-2025-54388 中危 v28.3.1+incompatible 28.3.3 github.com/moby/moby: Moby's Firewalld reload makes container ports accessible

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-54388

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-07-30 14:15 修改: 2025-09-08 16:34
golang.org/x/crypto CVE-2025-47914 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47914

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:36
golang.org/x/crypto CVE-2025-58181 中危 v0.37.0 0.45.0 golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58181

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-19 21:15 修改: 2025-12-11 19:29
golang.org/x/crypto CVE-2026-39831 中危 v0.37.0 0.52.0 The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nis ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39831

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-06-02 16:33
golang.org/x/crypto CVE-2026-39832 中危 v0.37.0 0.52.0 When adding a key to a remote agent constraint extensions such as rest ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39832

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:11
golang.org/x/crypto CVE-2026-39833 中危 v0.37.0 0.52.0 The in-memory keyring returned by NewKeyring() silently accepted keys ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39833

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:04
golang.org/x/crypto CVE-2026-39834 中危 v0.37.0 0.52.0 When writing data larger than 4GB in a single Write call on an SSH cha ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39834

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 15:03
golang.org/x/crypto CVE-2026-46598 中危 v0.37.0 0.52.0 golang.org/x/crypto/ssh/agent: golang: golang.org/x/crypto/ssh/agent: Denial of Service via malformed input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46598

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 04:16 修改: 2026-05-28 14:34
github.com/docker/docker CVE-2026-33997 中危 v28.3.1+incompatible 29.3.1 moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33997

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-31 03:15 修改: 2026-06-16 14:47
github.com/docker/docker CVE-2026-41568 中危 v28.3.1+incompatible github.com/docker/docker: github.com/moby/moby: Moby: Denial of Service via race condition in docker cp mount setup

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41568

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-12 19:16 修改: 2026-06-16 18:31
github.com/go-viper/mapstructure/v2 CVE-2025-11065 中危 v2.3.0 2.4.0 github.com/go-viper/mapstructure/v2: Go-viper's mapstructure May Leak Sensitive Information in Logs in github.com/go-viper/mapstructure

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11065

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-26 20:16 修改: 2026-04-15 00:35
github.com/in-toto/in-toto-golang GHSA-pmwq-pjrm-6p5r 中危 v0.9.0 0.11.0 in-toto-golang and in-toto-python have inconsistent negation behavior

漏洞详情: https://github.com/advisories/GHSA-pmwq-pjrm-6p5r

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-08 22:24 修改: 2026-05-08 22:24
github.com/containerd/containerd/v2 CVE-2026-50195 中危 v2.1.3 2.1.9, 2.2.5, 2.3.2 CVE-2026-50195 affecting package containerd2 for versions less than 2.2.4-3

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50195

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
github.com/containerd/containerd/v2 CVE-2025-64329 中危 v2.1.3 2.0.7, 2.1.5, 2.2.0 github.com/containerd/containerd: containerd: Memory exhaustion via CRI Attach implementation goroutine leaks

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64329

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-11-07 05:16 修改: 2025-12-31 18:34
stdlib CVE-2025-47906 中危 v1.24.5 1.23.12, 1.24.6 os/exec: Unexpected paths returned from LookPath in os/exec

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47906

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-09-18 19:15 修改: 2026-01-27 19:56
stdlib CVE-2025-47907 中危 v1.24.5 1.23.12, 1.24.6 database/sql: Postgres Scan Race Condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47907

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-08-07 16:15 修改: 2026-01-29 19:11
stdlib CVE-2025-47912 中危 v1.24.5 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58183 中危 v1.24.5 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58185 中危 v1.24.5 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58187 中危 v1.24.5 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.24.5 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.24.5 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.24.5 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.24.5 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.24.5 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.24.5 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61728 中危 v1.24.5 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61730 中危 v1.24.5 1.24.12, 1.25.6 crypto/tls: Handshake messages may be processed at the incorrect encryption level in crypto/tls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.24.5 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-27145 中危 v1.24.5 1.25.11, 1.26.4 *x509.Certificate).VerifyHostname previously called matchHostnames in ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27145

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2026-32282 中危 v1.24.5 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.24.5 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.24.5 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39826 中危 v1.24.5 1.25.10, 1.26.3 html/template: golang: html/template: Cross-site scripting due to incorrect script tag escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-07 20:16 修改: 2026-05-13 16:59
stdlib CVE-2026-42507 中危 v1.24.5 1.25.11, 1.26.4 net/textproto: golang: Golang net/textproto: Misleading error messages via input injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42507

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-06-02 23:16 修改: 2026-06-04 16:15
stdlib CVE-2025-58186 低危 v1.24.5 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.24.5 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32
golang.org/x/sys CVE-2026-39824 未知 v0.33.0 0.44.0 Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39824

镜像层: sha256:007f3b5ab8d5c8d048d4583202e495b867a0b4b85403fa1f9f803c0ceb3dc2a6

发布日期: 2026-05-22 20:16 修改: 2026-05-27 14:16
/etc/ssl/private/ssl-cert-snakeoil.key ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×