| libgnutls30 |
CVE-2026-33845 |
严重 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42010 |
严重 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-07 12:16 修改: 2026-06-02 16:16
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-31789 |
严重 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| perl-base |
CVE-2026-42496 |
严重 |
5.36.0-7+deb12u3 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-8376 |
严重 |
5.36.0-7+deb12u3 |
|
Perl versions through 5.43.10 have a heap buffer overflow when compili ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-26 00:16 修改: 2026-05-27 19:16
|
| zlib1g |
CVE-2023-45853 |
严重 |
1:1.2.13.dfsg-1 |
|
zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-10-14 02:15 修改: 2024-12-20 17:41
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-45447 |
高危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A specially crafted PKCS#7 or S/MIME signed message cou ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libtinfo6 |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-base |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| ncurses-bin |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-19 15:16 修改: 2026-06-02 14:16
|
| libgnutls30 |
CVE-2026-33846 |
高危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
|
| openssl |
CVE-2026-28387 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28388 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28389 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-28390 |
高危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-45447 |
高危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A specially crafted PKCS#7 or S/MIME signed message cou ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libgnutls30 |
CVE-2026-3833 |
高危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42009 |
高危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
|
| perl-base |
CVE-2026-42497 |
高危 |
5.36.0-7+deb12u3 |
|
Archive::Tar versions before 3.08 for Perl extract hardlinks to attack ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| perl-base |
CVE-2026-48959 |
高危 |
5.36.0-7+deb12u3 |
|
IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaust ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-48962 |
高危 |
5.36.0-7+deb12u3 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-27 04:16 修改: 2026-05-27 19:38
|
| perl-base |
CVE-2026-9538 |
高危 |
5.36.0-7+deb12u3 |
|
Archive::Tar versions before 3.10 for Perl allow memory exhaustion via ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-26 02:16 修改: 2026-05-28 14:16
|
| libcap2 |
CVE-2026-4878 |
高危 |
1:2.66-4+deb12u2+b2 |
1:2.66-4+deb12u3 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-09 16:16 修改: 2026-06-08 03:16
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libgnutls30 |
CVE-2026-42011 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42012 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42013 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-42014 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libgnutls30 |
CVE-2026-42015 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| libgnutls30 |
CVE-2026-5260 |
中危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
|
| liblzma5 |
CVE-2026-34743 |
中危 |
5.4.1-1 |
|
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libmount1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libpam-modules |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u2 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam-modules-bin |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u2 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam-runtime |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u2 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libpam0g |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u2 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libsmartcols1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libblkid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libbz2-1.0 |
CVE-2026-42250 |
中危 |
1.0.8-5+b1 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-28 14:16 修改: 2026-06-05 08:16
|
| libc-bin |
CVE-2026-0915 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| libssl3 |
CVE-2026-34182 |
中危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue Summary: Cryptographic Message Services (CMS) processing fails t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-45445 |
中危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When an application drives an AES-OCB context through t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libsystemd0 |
CVE-2026-29111 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libsystemd0 |
CVE-2026-40225 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libsystemd0 |
CVE-2026-4105 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| libc-bin |
CVE-2026-5450 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libtinfo6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libudev1 |
CVE-2026-29111 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
|
| libudev1 |
CVE-2026-40225 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
|
| libudev1 |
CVE-2026-40226 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
|
| libudev1 |
CVE-2026-4105 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-13 19:55 修改: 2026-04-30 17:16
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libuuid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| mount |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| mount |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| libc-bin |
CVE-2026-5928 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| ncurses-base |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| ncurses-bin |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
|
| libc6 |
CVE-2026-0915 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
|
| libc6 |
CVE-2026-4046 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
|
| libc6 |
CVE-2026-4437 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:41
|
| libc6 |
CVE-2026-5435 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
|
| libc6 |
CVE-2026-5450 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| libc6 |
CVE-2026-5928 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-20 21:16 修改: 2026-04-23 15:33
|
| openssl |
CVE-2026-31790 |
中危 |
3.0.18-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
|
| openssl |
CVE-2026-34182 |
中危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue Summary: Cryptographic Message Services (CMS) processing fails t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45445 |
中危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When an application drives an AES-OCB context through t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libc6 |
CVE-2026-6238 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.1-3 |
1.10.1-3+deb12u1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
|
| bsdutils |
CVE-2026-3184 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| dpkg |
CVE-2026-2219 |
中危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-07 09:16 修改: 2026-06-02 19:12
|
| gpgv |
CVE-2025-30258 |
中危 |
2.2.40-1.1+deb12u2 |
|
gnupg: verification DoS due to a malicious subkey in the keyring
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
|
| perl-base |
CVE-2025-15649 |
中危 |
5.36.0-7+deb12u3 |
|
IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaugh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|
| perl-base |
CVE-2026-7010 |
中危 |
5.36.0-7+deb12u3 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-11 22:22 修改: 2026-05-12 16:48
|
| sed |
CVE-2026-5958 |
中危 |
4.9-1 |
4.9-1+deb12u1 |
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
|
| tar |
CVE-2026-5704 |
中危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
|
| util-linux |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| util-linux-extra |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
|
| util-linux-extra |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-03 19:17 修改: 2026-05-01 19:29
|
| gpgv |
CVE-2025-68972 |
中危 |
2.2.40-1.1+deb12u2 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-27 23:15 修改: 2026-01-09 20:08
|
| zlib1g |
CVE-2026-27171 |
中危 |
1:1.2.13.dfsg-1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-02-18 04:16 修改: 2026-03-25 21:27
|
| libssl3 |
CVE-2026-34180 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a pr ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42766 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A specially crafted password-encrypted CMS message can ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42767 |
低危 |
3.0.18-1~deb12u2 |
|
Issue summary: An attacker-controlled CMP (Certificate Management Prot ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-42770 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-45446 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-S ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-7383 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A signed integer overflow when sizing the destination b ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libssl3 |
CVE-2026-9076 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| libstdc++6 |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| libc6 |
CVE-2026-0861 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
|
| libc6 |
CVE-2026-4438 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| apt |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| libgcc-s1 |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
252.39-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
252.39-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| libtasn1-6 |
CVE-2025-13151 |
低危 |
4.19.0-2+deb12u1 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
|
| dpkg |
CVE-2025-6297 |
低危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb does not properly sanitize directory p ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-07-01 17:15 修改: 2025-08-19 17:50
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.10.1-3 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2018-02-07 23:29 修改: 2024-11-21 04:11
|
| libtinfo6 |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.1-3 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
|
| gcc-12-base |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.2.15-2+b10 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libudev1 |
CVE-2013-4392 |
低危 |
252.39-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2023-31437 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2025-01-03 20:15
|
| libudev1 |
CVE-2023-31438 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2023-31439 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-06-13 17:15 修改: 2024-11-21 08:01
|
| libudev1 |
CVE-2026-40228 |
低危 |
252.39-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
|
| gpgv |
CVE-2022-3219 |
低危 |
2.2.40-1.1+deb12u2 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-02-23 20:15 修改: 2025-03-12 21:15
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.36-9+deb12u13 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libuuid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| login |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| login |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u13 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| mount |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| mount |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u13 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u13 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| ncurses-base |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u13 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| ncurses-bin |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-06-16 22:16 修改: 2026-06-02 14:16
|
| libgnutls30 |
CVE-2011-3389 |
低危 |
3.7.9-2+deb12u6 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
|
| libgnutls30 |
CVE-2026-5419 |
低危 |
3.7.9-2+deb12u6 |
3.7.9-2+deb12u7 |
guntls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-01 21:16 修改: 2026-06-02 17:16
|
| libc-bin |
CVE-2025-15281 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
|
| libc-bin |
CVE-2026-0861 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
|
| libc-bin |
CVE-2026-4438 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-03-20 20:16 修改: 2026-04-07 18:40
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libmount1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libapt-pkg6.0 |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| bsdutils |
CVE-2025-14104 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| openssl |
CVE-2025-27587 |
低危 |
3.0.18-1~deb12u2 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2025-06-16 22:15 修改: 2026-04-15 00:35
|
| openssl |
CVE-2026-34180 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a pr ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42766 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A specially crafted password-encrypted CMS message can ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42767 |
低危 |
3.0.18-1~deb12u2 |
|
Issue summary: An attacker-controlled CMP (Certificate Management Prot ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-42770 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-45446 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-S ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-7383 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: A signed integer overflow when sizing the destination b ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| openssl |
CVE-2026-9076 |
低危 |
3.0.18-1~deb12u2 |
3.0.20-1~deb12u2 |
Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+deb12u2 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| coreutils |
CVE-2016-2781 |
低危 |
9.1-1 |
|
coreutils: Non-privileged session can escape to the parent session in chroot
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2017-02-07 15:59 修改: 2026-05-13 00:24
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libblkid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| coreutils |
CVE-2017-18018 |
低危 |
9.1-1 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2018-01-04 04:29 修改: 2025-06-09 16:15
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| libsmartcols1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| coreutils |
CVE-2025-5278 |
低危 |
9.1-1 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-05-27 21:15 修改: 2026-05-19 17:16
|
| libc6 |
CVE-2010-4756 |
低危 |
2.36-9+deb12u13 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| perl-base |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u3 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl-base |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u3 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2023-04-29 00:15 修改: 2025-01-30 20:15
|
| libc6 |
CVE-2018-20796 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-02-26 02:29 修改: 2024-11-21 04:02
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
3.06-4 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u13 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| tar |
CVE-2005-2541 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u13 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u13 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| util-linux |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| util-linux |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u13 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-07-15 04:15 修改: 2024-11-21 04:17
|
| libc6 |
CVE-2019-9192 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2019-02-26 18:29 修改: 2024-11-21 04:51
|
| util-linux-extra |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2022-02-21 19:15 修改: 2025-06-09 16:15
|
| util-linux-extra |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2025-12-05 17:16 修改: 2026-04-19 20:16
|
| libc6 |
CVE-2025-15281 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
|
| libssl3 |
CVE-2025-27587 |
低危 |
3.0.18-1~deb12u2 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:7f89c50a99d24b04d698a92d410c49076f86f685fba508664657e1f410e68512
发布日期: 2025-06-16 22:15 修改: 2026-04-15 00:35
|
| perl-base |
CVE-2026-48961 |
未知 |
5.36.0-7+deb12u3 |
|
IO::Compress versions from 2.207 before 2.220 for Perl ship a zipdetai ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:e48af84b2108a5d73effd9e16685b42ac33e7994e606398c46690918f5f3604a
发布日期: 2026-05-27 04:16 修改: 2026-05-29 16:16
|