| libcapstone4 |
CVE-2025-68114 |
严重 |
4.0.2-5 |
|
capstone: Capstone: Memory corruption via unchecked vsnprintf return
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68114
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-17 22:16 修改: 2026-06-17 09:58
|
| libgbm1 |
CVE-2026-40393 |
严重 |
22.3.6-1+deb12u1 |
22.3.6-1+deb12u2 |
In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory acces ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40393
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-12 19:16 修改: 2026-07-13 10:16
|
| libglib2.0-0 |
CVE-2025-14087 |
严重 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u8 |
glib: GLib: Buffer underflow in GVariant parser leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14087
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-10 09:15 修改: 2026-07-13 22:16
|
| libglib2.0-0 |
CVE-2026-58016 |
严重 |
2.74.6-2+deb12u7 |
|
glib: integer underflow in gio/gdbusintrospection.c via "g_dbus_node_info_new_for_xml"
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58016
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-01 17:46
|
| libgnutls30 |
CVE-2026-33845 |
严重 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-30 18:16 修改: 2026-07-15 02:20
|
| libgnutls30 |
CVE-2026-42010 |
严重 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Authentication Bypass via NUL Character in Username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-07 12:16 修改: 2026-07-15 02:21
|
| libnss3 |
CVE-2026-2781 |
严重 |
2:3.87.1-1+deb12u1 |
2:3.87.1-1+deb12u2 |
firefox: thunderbird: Integer overflow in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2781
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-24 14:16 修改: 2026-06-17 10:31
|
| libsqlite3-0 |
CVE-2025-7458 |
严重 |
3.40.1-2+deb12u2 |
|
sqlite: SQLite integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7458
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-07-29 13:15 修改: 2026-06-17 10:04
|
| libssl3 |
CVE-2026-31789 |
严重 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| openssh-client |
CVE-2026-60002 |
严重 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:36
|
| openssh-server |
CVE-2026-60002 |
严重 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:36
|
| openssh-sftp-server |
CVE-2026-60002 |
严重 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:36
|
| perl-base |
CVE-2026-13221 |
严重 |
5.36.0-7+deb12u3 |
|
Perl versions through 5.43.9 produce silently incorrect regular expres ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13221
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-07-13 17:16 修改: 2026-07-14 18:15
|
| perl-base |
CVE-2026-42496 |
严重 |
5.36.0-7+deb12u3 |
|
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 02:16 修改: 2026-07-15 02:21
|
| perl-base |
CVE-2026-8376 |
严重 |
5.36.0-7+deb12u3 |
|
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| ssh |
CVE-2026-60002 |
严重 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Use-after-free vulnerability during host key re-exchange on the client side
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:36
|
| zlib1g |
CVE-2023-45853 |
严重 |
1:1.2.13.dfsg-1 |
|
zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-10-14 02:15 修改: 2026-07-14 13:17
|
| libacl1 |
CVE-2026-54369 |
高危 |
2.3.1-3 |
|
acl: Symlink traversal privilege escalation via libacl functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54369
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 14:16 修改: 2026-07-15 01:16
|
| libglib2.0-0 |
CVE-2026-58010 |
高危 |
2.74.6-2+deb12u7 |
|
glib: buffer over-read in glib/gvariant-serialiser.c via gvs_tuple_is_normal()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58010
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-02 19:09
|
| libglib2.0-0 |
CVE-2026-58011 |
高危 |
2.74.6-2+deb12u7 |
|
glib: out-of-bounds read in glib/gdatetime.c:g_date_time_get_ymd via invalid GDateTime
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58011
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-02 19:20
|
| libglib2.0-0 |
CVE-2026-58012 |
高危 |
2.74.6-2+deb12u7 |
|
glib: buffer over-read in g_regex_replace() via glib/gregex.c:string_append() and g_utf8_next_char()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58012
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-02 19:28
|
| libglib2.0-0 |
CVE-2026-58013 |
高危 |
2.74.6-2+deb12u7 |
|
glib: buffer over-read in glib/giochannel.c via "g_io_channel_read_line_backend"
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58013
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-02 19:29
|
| libglib2.0-0 |
CVE-2026-58014 |
高危 |
2.74.6-2+deb12u7 |
|
glib: off-by-one error in glib/gkeyfile.c via "g_key_file_get_locale_string_list"
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58014
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-01 17:58
|
| libglib2.0-0 |
CVE-2026-58015 |
高危 |
2.74.6-2+deb12u7 |
|
glib: path traversal in glib/gio/gdbusauthmechanismsha1.c via keyring_lookup_entry and mechanism_client_data_receive
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58015
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-30 13:19 修改: 2026-07-02 02:16
|
| libblkid1 |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libcap2 |
CVE-2026-4878 |
高危 |
1:2.66-4+deb12u2 |
1:2.66-4+deb12u3 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-09 16:16 修改: 2026-07-15 14:18
|
| libgnutls30 |
CVE-2026-33846 |
高危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-04 10:15 修改: 2026-07-15 02:20
|
| libgnutls30 |
CVE-2026-3833 |
高危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-30 18:16 修改: 2026-07-13 22:16
|
| libgnutls30 |
CVE-2026-42009 |
高危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-18 13:16 修改: 2026-07-15 02:21
|
| libgssapi-krb5-2 |
CVE-2026-40355 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 06:16 修改: 2026-07-14 13:18
|
| libgssapi-krb5-2 |
CVE-2026-40356 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libgstreamer-plugins-base1.0-0 |
CVE-2026-2921 |
高危 |
1.22.0-3+deb12u5 |
1.22.0-3+deb12u6 |
GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2921
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 14:19 修改: 2026-07-15 02:19
|
| libk5crypto3 |
CVE-2026-40355 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 06:16 修改: 2026-07-14 13:18
|
| libk5crypto3 |
CVE-2026-40356 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libkrb5-3 |
CVE-2026-40355 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 06:16 修改: 2026-07-14 13:18
|
| libkrb5-3 |
CVE-2026-40356 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libkrb5support0 |
CVE-2026-40355 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5: Denial of Service via NULL pointer dereference in NegoEx mechanism
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40355
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 06:16 修改: 2026-07-14 13:18
|
| libkrb5support0 |
CVE-2026-40356 |
高危 |
1.20.1-2+deb12u4 |
1.20.1-2+deb12u5 |
krb5: MIT Kerberos 5 (krb5): Denial of Service via integer underflow and out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40356
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-28 07:16 修改: 2026-07-08 12:48
|
| libmount1 |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libncursesw6 |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libcap2-bin |
CVE-2026-4878 |
高危 |
1:2.66-4+deb12u2 |
1:2.66-4+deb12u3 |
libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-09 16:16 修改: 2026-07-15 14:18
|
| libpam-modules |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam-modules-bin |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam-runtime |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpam0g |
CVE-2025-6020 |
高危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16
|
| libpng16-16 |
CVE-2025-64720 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u1 |
libpng: LIBPNG buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55
|
| libpng16-16 |
CVE-2025-65018 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u1 |
libpng: LIBPNG heap buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55
|
| libpng16-16 |
CVE-2025-66293 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u1 |
libpng: LIBPNG out-of-bounds read in png_image_read_composite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-03 21:15 修改: 2026-06-17 09:56
|
| libpng16-16 |
CVE-2026-22695 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u2 |
libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20
|
| libpng16-16 |
CVE-2026-22801 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u2 |
libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20
|
| libpng16-16 |
CVE-2026-25646 |
高危 |
1.6.39-2 |
1.6.39-2+deb12u3 |
libpng: LIBPNG has a heap buffer overflow in png_set_quantize
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-10 18:16 修改: 2026-07-15 02:18
|
| libpython3.11-minimal |
CVE-2025-13836 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Excessive read buffering DoS in http.client
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-minimal |
CVE-2025-69534 |
高危 |
3.11.2-6+deb12u6 |
|
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| libpython3.11-minimal |
CVE-2026-11940 |
高危 |
3.11.2-6+deb12u6 |
|
tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 17:16 修改: 2026-06-30 16:16
|
| libpython3.11-minimal |
CVE-2026-3644 |
高危 |
3.11.2-6+deb12u6 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.11-minimal |
CVE-2026-4224 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.11-minimal |
CVE-2026-6100 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| libpython3.11-minimal |
CVE-2026-7210 |
高危 |
3.11.2-6+deb12u6 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02
|
| libpython3.11-stdlib |
CVE-2025-13836 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Excessive read buffering DoS in http.client
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-stdlib |
CVE-2025-69534 |
高危 |
3.11.2-6+deb12u6 |
|
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| libpython3.11-stdlib |
CVE-2026-11940 |
高危 |
3.11.2-6+deb12u6 |
|
tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 17:16 修改: 2026-06-30 16:16
|
| libpython3.11-stdlib |
CVE-2026-3644 |
高危 |
3.11.2-6+deb12u6 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.11-stdlib |
CVE-2026-4224 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.11-stdlib |
CVE-2026-6100 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| libpython3.11-stdlib |
CVE-2026-7210 |
高危 |
3.11.2-6+deb12u6 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02
|
| libsmartcols1 |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| bsdutils |
CVE-2026-53615 |
高危 |
1:2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libcapstone4 |
CVE-2025-67873 |
高危 |
4.0.2-5 |
|
capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-67873
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-17 22:16 修改: 2026-06-17 09:58
|
| libssl3 |
CVE-2025-15467 |
高危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-07-15 02:17
|
| libssl3 |
CVE-2025-69421 |
高危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2026-28387 |
高危 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28388 |
高危 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28389 |
高危 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-28390 |
高危 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl3 |
CVE-2026-45447 |
高危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-07-15 14:18
|
| libtinfo6 |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libuuid1 |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| mount |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| ncurses-base |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| ncurses-bin |
CVE-2025-69720 |
高危 |
6.4-4 |
|
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libexpat1 |
CVE-2025-59375 |
高危 |
2.5.0-1+deb12u2 |
|
firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46
|
| openssh-client |
CVE-2026-3497 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u9 |
openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 19:16 修改: 2026-07-15 02:21
|
| openssh-client |
CVE-2026-35385 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-15 02:20
|
| openssh-client |
CVE-2026-35386 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-07 15:55
|
| openssh-client |
CVE-2026-35414 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 18:16 修改: 2026-06-17 10:40
|
| openssh-client |
CVE-2026-59999 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59999
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:52
|
| openssh-client |
CVE-2026-60000 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60000
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:51
|
| libexpat1 |
CVE-2026-25210 |
高危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24
|
| openssh-server |
CVE-2026-3497 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u9 |
openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 19:16 修改: 2026-07-15 02:21
|
| openssh-server |
CVE-2026-35385 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-15 02:20
|
| openssh-server |
CVE-2026-35386 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-07 15:55
|
| openssh-server |
CVE-2026-35414 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 18:16 修改: 2026-06-17 10:40
|
| openssh-server |
CVE-2026-59999 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59999
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:52
|
| openssh-server |
CVE-2026-60000 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60000
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:51
|
| libexpat1 |
CVE-2026-45186 |
高危 |
2.5.0-1+deb12u2 |
|
libexpat: denial of service via crafted XML input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-10 07:16 修改: 2026-07-15 02:22
|
| openssh-sftp-server |
CVE-2026-3497 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u9 |
openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 19:16 修改: 2026-07-15 02:21
|
| openssh-sftp-server |
CVE-2026-35385 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-15 02:20
|
| openssh-sftp-server |
CVE-2026-35386 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-07 15:55
|
| openssh-sftp-server |
CVE-2026-35414 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 18:16 修改: 2026-06-17 10:40
|
| openssh-sftp-server |
CVE-2026-59999 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59999
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:52
|
| openssh-sftp-server |
CVE-2026-60000 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60000
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:51
|
| libexpat1 |
CVE-2026-56131 |
高危 |
2.5.0-1+deb12u2 |
|
libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| libexpat1 |
CVE-2026-56407 |
高危 |
2.5.0-1+deb12u2 |
|
libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28
|
| libexpat1 |
CVE-2026-56408 |
高危 |
2.5.0-1+deb12u2 |
|
libexpat before 2.8.2 has an integer overflow in copyString.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27
|
| perl-base |
CVE-2026-42497 |
高危 |
5.36.0-7+deb12u3 |
|
perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47
|
| perl-base |
CVE-2026-48962 |
高危 |
5.36.0-7+deb12u3 |
|
perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-27 04:16 修改: 2026-07-15 02:22
|
| perl-base |
CVE-2026-57432 |
高危 |
5.36.0-7+deb12u3 |
|
Perl versions through 5.43.10 have an integer overflow in S_measure_st ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57432
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-07-13 17:17 修改: 2026-07-14 18:04
|
| perl-base |
CVE-2026-9538 |
高危 |
5.36.0-7+deb12u3 |
|
perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05
|
| python3.11 |
CVE-2025-13836 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Excessive read buffering DoS in http.client
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| python3.11 |
CVE-2025-69534 |
高危 |
3.11.2-6+deb12u6 |
|
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| python3.11 |
CVE-2026-11940 |
高危 |
3.11.2-6+deb12u6 |
|
tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 17:16 修改: 2026-06-30 16:16
|
| python3.11 |
CVE-2026-3644 |
高危 |
3.11.2-6+deb12u6 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.11 |
CVE-2026-4224 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.11 |
CVE-2026-6100 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| python3.11 |
CVE-2026-7210 |
高危 |
3.11.2-6+deb12u6 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02
|
| python3.11-minimal |
CVE-2025-13836 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Excessive read buffering DoS in http.client
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13836
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| python3.11-minimal |
CVE-2025-69534 |
高危 |
3.11.2-6+deb12u6 |
|
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-05 15:16 修改: 2026-07-15 02:17
|
| python3.11-minimal |
CVE-2026-11940 |
高危 |
3.11.2-6+deb12u6 |
|
tarfile.extractall() with the 'data' or 'tar' filter could be bypasse ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11940
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 17:16 修改: 2026-06-30 16:16
|
| python3.11-minimal |
CVE-2026-3644 |
高危 |
3.11.2-6+deb12u6 |
|
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.11-minimal |
CVE-2026-4224 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.11-minimal |
CVE-2026-6100 |
高危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-13 18:16 修改: 2026-07-15 01:16
|
| python3.11-minimal |
CVE-2026-7210 |
高危 |
3.11.2-6+deb12u6 |
|
python: expat: Python/Expat: Denial of Service via crafted XML document
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7210
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-11 18:16 修改: 2026-06-17 11:02
|
| qemu-system-common |
CVE-2022-3872 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: sdhci: buffer data port register off-by-one read/write
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3872
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-11-07 21:15 修改: 2026-06-17 05:00
|
| qemu-system-common |
CVE-2023-1386 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: 9pfs: SUID/SGID bits not dropped on file write
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-07-24 16:15 修改: 2026-06-17 05:27
|
| qemu-system-common |
CVE-2024-6519 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: lsi53c895a: use-after-free local privilege escalation vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-10-21 15:15 修改: 2026-06-17 08:18
|
| qemu-system-common |
CVE-2024-7730 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7730
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-11-14 12:15 修改: 2026-06-17 08:20
|
| qemu-system-common |
CVE-2026-3842 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3842
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-16 01:16 修改: 2026-07-16 01:16
|
| qemu-system-common |
CVE-2026-48002 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-common |
CVE-2026-48003 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-common |
CVE-2026-8343 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8343
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2022-3872 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: sdhci: buffer data port register off-by-one read/write
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3872
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-11-07 21:15 修改: 2026-06-17 05:00
|
| qemu-system-data |
CVE-2023-1386 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: 9pfs: SUID/SGID bits not dropped on file write
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-07-24 16:15 修改: 2026-06-17 05:27
|
| qemu-system-data |
CVE-2024-6519 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: lsi53c895a: use-after-free local privilege escalation vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-10-21 15:15 修改: 2026-06-17 08:18
|
| qemu-system-data |
CVE-2024-7730 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7730
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-11-14 12:15 修改: 2026-06-17 08:20
|
| qemu-system-data |
CVE-2026-3842 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3842
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-16 01:16 修改: 2026-07-16 01:16
|
| qemu-system-data |
CVE-2026-48002 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2026-48003 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2026-8343 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8343
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2022-3872 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: sdhci: buffer data port register off-by-one read/write
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3872
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-11-07 21:15 修改: 2026-06-17 05:00
|
| qemu-system-x86 |
CVE-2023-1386 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: 9pfs: SUID/SGID bits not dropped on file write
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-07-24 16:15 修改: 2026-06-17 05:27
|
| qemu-system-x86 |
CVE-2024-6519 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: lsi53c895a: use-after-free local privilege escalation vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-10-21 15:15 修改: 2026-06-17 08:18
|
| qemu-system-x86 |
CVE-2024-7730 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7730
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-11-14 12:15 修改: 2026-06-17 08:20
|
| qemu-system-x86 |
CVE-2026-3842 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3842
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-16 01:16 修改: 2026-07-16 01:16
|
| qemu-system-x86 |
CVE-2026-48002 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2026-48003 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2026-8343 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8343
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-utils |
CVE-2022-3872 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: sdhci: buffer data port register off-by-one read/write
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3872
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-11-07 21:15 修改: 2026-06-17 05:00
|
| qemu-utils |
CVE-2023-1386 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: 9pfs: SUID/SGID bits not dropped on file write
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-07-24 16:15 修改: 2026-06-17 05:27
|
| qemu-utils |
CVE-2024-6519 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: lsi53c895a: use-after-free local privilege escalation vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-10-21 15:15 修改: 2026-06-17 08:18
|
| qemu-utils |
CVE-2024-7730 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7730
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-11-14 12:15 修改: 2026-06-17 08:20
|
| qemu-utils |
CVE-2026-3842 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: hyperv/syndbg: missing mapped-length guard after cpu_physical_memory_map causes host OOB write
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3842
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-16 01:16 修改: 2026-07-16 01:16
|
| qemu-utils |
CVE-2026-48002 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48002
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-utils |
CVE-2026-48003 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-utils |
CVE-2026-8343 |
高危 |
1:7.2+dfsg-7+deb12u16 |
|
ELSA-2026-50337: virt:kvm_utils3 security update (IMPORTANT)
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8343
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| gpgv |
CVE-2025-68973 |
高危 |
2.2.40-1.1+deb12u1 |
2.2.40-1.1+deb12u2 |
GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59
|
| ssh |
CVE-2026-3497 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u9 |
openssh: OpenSSH GSSAPI: Information disclosure or denial of service due to uninitialized variables
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3497
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 19:16 修改: 2026-07-15 02:21
|
| ssh |
CVE-2026-35385 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35385
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-15 02:20
|
| ssh |
CVE-2026-35386 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Arbitrary command execution via shell metacharacters in username
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35386
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-07-07 15:55
|
| ssh |
CVE-2026-35414 |
高危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35414
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 18:16 修改: 2026-06-17 10:40
|
| ssh |
CVE-2026-59999 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH sshd: Security bypass due to incorrect handling of forwarding and tunneling options
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59999
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:52
|
| ssh |
CVE-2026-60000 |
高危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Denial of Service via excessive GSSAPI authentication attempts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60000
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:51
|
| util-linux |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux-extra |
CVE-2026-53615 |
高危 |
2.38.1-5+deb12u3 |
|
[Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| gzip |
CVE-2026-41992 |
高危 |
1.12-1 |
|
GNU gzip contains a global buffer overflow vulnerability in the LZH de ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libpython3.11-minimal |
CVE-2026-8328 |
中危 |
3.11.2-6+deb12u6 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.11-minimal |
CVE-2026-9669 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| dpkg |
CVE-2026-2219 |
中危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-07 09:16 修改: 2026-06-17 10:30
|
| libgcrypt20 |
CVE-2026-41989 |
中危 |
1.10.1-3 |
1.10.1-3+deb12u1 |
Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-23 05:16 修改: 2026-07-14 13:18
|
| libblkid1 |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libblkid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libbz2-1.0 |
CVE-2026-42250 |
中危 |
1.0.8-5+b1 |
|
bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47
|
| libc-bin |
CVE-2026-0915 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
|
| libpython3.11-stdlib |
CVE-2025-11468 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:30
|
| libpython3.11-stdlib |
CVE-2025-12084 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-03 19:15 修改: 2026-06-17 08:31
|
| libpython3.11-stdlib |
CVE-2025-12781 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32
|
| libpython3.11-stdlib |
CVE-2025-13837 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-stdlib |
CVE-2025-15282 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| libpython3.11-stdlib |
CVE-2025-15366 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-07-09 18:16
|
| libpython3.11-stdlib |
CVE-2025-15367 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| libpython3.11-stdlib |
CVE-2025-4516 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| libpython3.11-stdlib |
CVE-2025-6069 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-17 14:15 修改: 2026-06-17 10:01
|
| libpython3.11-stdlib |
CVE-2025-6075 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-31 17:15 修改: 2026-06-17 10:01
|
| libpython3.11-stdlib |
CVE-2025-8194 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Cpython infinite loop when parsing a tarfile
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-07-28 19:15 修改: 2026-06-17 10:06
|
| libpython3.11-stdlib |
CVE-2025-8291 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-07 18:16 修改: 2026-06-17 10:06
|
| libpython3.11-stdlib |
CVE-2026-0672 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| libpython3.11-stdlib |
CVE-2026-0864 |
中危 |
3.11.2-6+deb12u6 |
|
python: cpython: Python configparser: Configuration injection via crafted multi-line input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51
|
| libpython3.11-stdlib |
CVE-2026-0865 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: wsgiref.headers.Headers allows header newline injection in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| libpython3.11-stdlib |
CVE-2026-11972 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python tarfile module: Denial of Service via improper EOF handling in streaming mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11972
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 23:16 修改: 2026-06-30 16:16
|
| libpython3.11-stdlib |
CVE-2026-1299 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.11-stdlib |
CVE-2026-1502 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.11-stdlib |
CVE-2026-3276 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.11-stdlib |
CVE-2026-3446 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python base64: Incomplete data decoding due to premature stop at padding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43
|
| libpython3.11-stdlib |
CVE-2026-6019 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.11-stdlib |
CVE-2026-8328 |
中危 |
3.11.2-6+deb12u6 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.11-stdlib |
CVE-2026-9669 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libslirp0 |
CVE-2026-9539 |
中危 |
4.7.0-1 |
|
An out-of-bounds heap read and integer underflow in the TCP urgent dat ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9539
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-24 05:17 修改: 2026-06-25 19:26
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18
|
| libsmartcols1 |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libsmartcols1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libsqlite3-0 |
CVE-2025-7709 |
中危 |
3.40.1-2+deb12u2 |
|
An integer overflow exists in the FTS5 https://sqlite.org/fts5.html e ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7709
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-09-08 15:15 修改: 2026-06-17 10:05
|
| libsqlite3-0 |
CVE-2026-11822 |
中危 |
3.40.1-2+deb12u2 |
|
SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
|
| libsqlite3-0 |
CVE-2026-11824 |
中危 |
3.40.1-2+deb12u2 |
|
SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19
|
| libglib2.0-0 |
CVE-2025-13601 |
中危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u8 |
glib: Integer overflow in in g_escape_uri_string()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-26 15:15 修改: 2026-06-30 00:16
|
| libglib2.0-0 |
CVE-2025-14512 |
中危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u8 |
glib: Integer Overflow in GLib GIO Attribute Escaping Causes Heap Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14512
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-11 07:16 修改: 2026-07-13 17:16
|
| libglib2.0-0 |
CVE-2026-1484 |
中危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u9 |
Glib: Integer Overflow Leading to Buffer Underflow and Out-of-Bounds Write in GLib g_base64_encode()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1484
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 14:15 修改: 2026-06-17 10:15
|
| libglib2.0-0 |
CVE-2026-1489 |
中危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u9 |
Glib: GLib: Memory corruption via integer overflow in Unicode case conversion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1489
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 15:15 修改: 2026-06-17 10:15
|
| libc-bin |
CVE-2026-5450 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-20 21:16 修改: 2026-07-14 13:19
|
| libc-bin |
CVE-2026-5928 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-20 21:16 修改: 2026-07-14 13:19
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19
|
| libssl3 |
CVE-2025-69419 |
中危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-9230 |
中危 |
3.0.17-1~deb12u2 |
3.0.17-1~deb12u3 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-09-30 14:15 修改: 2026-07-14 13:18
|
| libssl3 |
CVE-2026-31790 |
中危 |
3.0.17-1~deb12u2 |
3.0.19-1~deb12u2 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| libssl3 |
CVE-2026-34182 |
中危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-45445 |
中危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libsystemd0 |
CVE-2026-29111 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
|
| libsystemd0 |
CVE-2026-40225 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-40226 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-4105 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
|
| libc6 |
CVE-2026-0915 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Information disclosure via zero-valued network query
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11
|
| libtinfo6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libudev1 |
CVE-2026-29111 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29
|
| libudev1 |
CVE-2026-40225 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libudev1 |
CVE-2026-40226 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd nspawn: Escape-to-host action via crafted config file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libudev1 |
CVE-2026-4105 |
中危 |
252.39-1~deb12u1 |
252.39-1~deb12u2 |
systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55
|
| libusb-1.0-0 |
CVE-2026-23679 |
中危 |
2:1.0.26-1 |
|
libusb: libusb: Denial of Service via malformed USB configuration descriptor
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23679
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-27 14:16 修改: 2026-07-14 16:16
|
| libusb-1.0-0 |
CVE-2026-47104 |
中危 |
2:1.0.26-1 |
|
libusb: libusb: Denial of Service via malformed USB descriptor
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47104
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-27 14:17 修改: 2026-07-14 22:16
|
| libc6 |
CVE-2026-4046 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-30 18:16 修改: 2026-07-14 13:18
|
| libuuid1 |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libuuid1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libgnutls30 |
CVE-2025-14831 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u6 |
gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-02-09 15:16 修改: 2026-06-30 00:16
|
| mount |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| mount |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| mount |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libgnutls30 |
CVE-2026-42011 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Security bypass due to incorrect name constraint handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-07 15:16 修改: 2026-07-13 17:17
|
| ncurses-base |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libgnutls30 |
CVE-2026-42012 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| ncurses-bin |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libgnutls30 |
CVE-2026-42013 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30 |
CVE-2026-42014 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-16 02:16 修改: 2026-07-15 15:16
|
| libgnutls30 |
CVE-2026-42015 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libgnutls30 |
CVE-2026-5260 |
中危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Information disclosure via heap overread in RSA key exchange
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-26 22:16 修改: 2026-07-15 15:16
|
| libc6 |
CVE-2026-4437 |
中危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libc6 |
CVE-2026-5435 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-28 13:19 修改: 2026-07-14 13:19
|
| libc6 |
CVE-2026-5450 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-20 21:16 修改: 2026-07-14 13:19
|
| openssh-client |
CVE-2025-61984 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-client |
CVE-2025-61985 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-client |
CVE-2026-35387 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| openssh-client |
CVE-2026-59995 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: sftp client allows attacker to control downloaded file location
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59995
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-client |
CVE-2026-59996 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59996
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-client |
CVE-2026-59997 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59997
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:11
|
| openssh-client |
CVE-2026-59998 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59998
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:55
|
| openssh-client |
CVE-2026-60001 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60001
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:37
|
| libc6 |
CVE-2026-5928 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-20 21:16 修改: 2026-07-14 13:19
|
| libc6 |
CVE-2026-6238 |
中危 |
2.36-9+deb12u13 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-28 19:37 修改: 2026-07-14 13:19
|
| bsdutils |
CVE-2026-13595 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| gpgv |
CVE-2025-30258 |
中危 |
2.2.40-1.1+deb12u1 |
|
gnupg: verification DoS due to a malicious subkey in the keyring
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08
|
| gpgv |
CVE-2025-68972 |
中危 |
2.2.40-1.1+deb12u1 |
|
gnupg: GnuPG: Signature bypass via form feed character in signed messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| liblzma5 |
CVE-2026-34743 |
中危 |
5.4.1-1 |
5.4.1-1+deb12u1 |
xz: XZ Utils: Denial of Service via buffer overflow in index decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39
|
| openssh-server |
CVE-2025-61984 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-server |
CVE-2025-61985 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-server |
CVE-2026-35387 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| openssh-server |
CVE-2026-59995 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: sftp client allows attacker to control downloaded file location
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59995
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-server |
CVE-2026-59996 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59996
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-server |
CVE-2026-59997 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59997
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:11
|
| openssh-server |
CVE-2026-59998 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59998
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:55
|
| openssh-server |
CVE-2026-60001 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60001
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:37
|
| gzip |
CVE-2026-41991 |
中危 |
1.12-1 |
|
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libmount1 |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libmount1 |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| bsdutils |
CVE-2026-3184 |
中危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libncursesw6 |
CVE-2023-50495 |
中危 |
6.4-4 |
|
ncurses: segmentation fault via _nc_wrap_entry()
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39
|
| libacl1 |
CVE-2026-54370 |
中危 |
2.3.1-3 |
|
acl: TOCTOU Symlink Traversal via getfacl/setfacl
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54370
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 14:16 修改: 2026-06-29 19:22
|
| openssh-sftp-server |
CVE-2025-61984 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-sftp-server |
CVE-2025-61985 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| openssh-sftp-server |
CVE-2026-35387 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| openssh-sftp-server |
CVE-2026-59995 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: sftp client allows attacker to control downloaded file location
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59995
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-sftp-server |
CVE-2026-59996 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59996
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| openssh-sftp-server |
CVE-2026-59997 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59997
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:11
|
| openssh-sftp-server |
CVE-2026-59998 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59998
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:55
|
| openssh-sftp-server |
CVE-2026-60001 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60001
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:37
|
| libnss3 |
CVE-2023-5388 |
中危 |
2:3.87.1-1+deb12u1 |
|
nss: timing attack against RSA decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-19 12:15 修改: 2026-06-17 06:48
|
| libnss3 |
CVE-2023-6135 |
中危 |
2:3.87.1-1+deb12u1 |
|
nss: vulnerable to Minerva side-channel information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-12-19 14:15 修改: 2026-06-17 06:50
|
| libnss3 |
CVE-2024-7531 |
中危 |
2:3.87.1-1+deb12u1 |
|
mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-08-06 13:15 修改: 2026-06-17 08:20
|
| libnss3 |
CVE-2026-6766 |
中危 |
2:3.87.1-1+deb12u1 |
|
firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6766
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
|
| libnss3 |
CVE-2026-6767 |
中危 |
2:3.87.1-1+deb12u1 |
|
firefox: thunderbird: Other issue in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6767
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
|
| libnss3 |
CVE-2026-6772 |
中危 |
2:3.87.1-1+deb12u1 |
|
firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6772
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-21 13:16 修改: 2026-06-17 11:01
|
| liborc-0.4-0 |
CVE-2024-40897 |
中危 |
1:0.4.33-2 |
|
orc: Stack-based buffer overflow vulnerability in ORC
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-40897
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-07-26 06:15 修改: 2026-06-17 07:46
|
| perl-base |
CVE-2025-15649 |
中危 |
5.36.0-7+deb12u3 |
|
perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38
|
| perl-base |
CVE-2026-12087 |
中危 |
5.36.0-7+deb12u3 |
|
perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14
|
| perl-base |
CVE-2026-48959 |
中危 |
5.36.0-7+deb12u3 |
|
perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-base |
CVE-2026-48961 |
中危 |
5.36.0-7+deb12u3 |
|
perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55
|
| perl-base |
CVE-2026-7010 |
中危 |
5.36.0-7+deb12u3 |
|
HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.24.1-2 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16
|
| libasound2 |
CVE-2026-25068 |
中危 |
1.2.8-1+b1 |
|
alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-29 20:16 修改: 2026-06-17 10:24
|
| libpam-modules |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam-modules |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam-modules |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libasound2-data |
CVE-2026-25068 |
中危 |
1.2.8-1 |
|
alsa-lib: alsa-lib Topology Decoder Heap-based Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25068
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-29 20:16 修改: 2026-06-17 10:24
|
| libpam-modules-bin |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| python3.11 |
CVE-2025-11468 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:30
|
| python3.11 |
CVE-2025-12084 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-03 19:15 修改: 2026-06-17 08:31
|
| python3.11 |
CVE-2025-12781 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32
|
| python3.11 |
CVE-2025-13837 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| python3.11 |
CVE-2025-15282 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| python3.11 |
CVE-2025-15366 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-07-09 18:16
|
| python3.11 |
CVE-2025-15367 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| python3.11 |
CVE-2025-4516 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| python3.11 |
CVE-2025-6069 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-17 14:15 修改: 2026-06-17 10:01
|
| python3.11 |
CVE-2025-6075 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-31 17:15 修改: 2026-06-17 10:01
|
| python3.11 |
CVE-2025-8194 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Cpython infinite loop when parsing a tarfile
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-07-28 19:15 修改: 2026-06-17 10:06
|
| python3.11 |
CVE-2025-8291 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-07 18:16 修改: 2026-06-17 10:06
|
| python3.11 |
CVE-2026-0672 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| python3.11 |
CVE-2026-0864 |
中危 |
3.11.2-6+deb12u6 |
|
python: cpython: Python configparser: Configuration injection via crafted multi-line input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51
|
| python3.11 |
CVE-2026-0865 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: wsgiref.headers.Headers allows header newline injection in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| python3.11 |
CVE-2026-11972 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python tarfile module: Denial of Service via improper EOF handling in streaming mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11972
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 23:16 修改: 2026-06-30 16:16
|
| python3.11 |
CVE-2026-1299 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.11 |
CVE-2026-1502 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.11 |
CVE-2026-3276 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.11 |
CVE-2026-3446 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python base64: Incomplete data decoding due to premature stop at padding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43
|
| python3.11 |
CVE-2026-6019 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.11 |
CVE-2026-8328 |
中危 |
3.11.2-6+deb12u6 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.11 |
CVE-2026-9669 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpam-modules-bin |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam-modules-bin |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libattr1 |
CVE-2026-54371 |
中危 |
1:2.5.1-4 |
|
attr: Symlink Traversal Privilege Escalation via getfattr and setfattr
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54371
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 14:16 修改: 2026-07-15 01:16
|
| libpam-runtime |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam-runtime |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam-runtime |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| python3.11-minimal |
CVE-2025-11468 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:30
|
| python3.11-minimal |
CVE-2025-12084 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-03 19:15 修改: 2026-06-17 08:31
|
| python3.11-minimal |
CVE-2025-12781 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32
|
| python3.11-minimal |
CVE-2025-13837 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| python3.11-minimal |
CVE-2025-15282 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| python3.11-minimal |
CVE-2025-15366 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-07-09 18:16
|
| python3.11-minimal |
CVE-2025-15367 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| python3.11-minimal |
CVE-2025-4516 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| python3.11-minimal |
CVE-2025-6069 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-17 14:15 修改: 2026-06-17 10:01
|
| python3.11-minimal |
CVE-2025-6075 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-31 17:15 修改: 2026-06-17 10:01
|
| python3.11-minimal |
CVE-2025-8194 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Cpython infinite loop when parsing a tarfile
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-07-28 19:15 修改: 2026-06-17 10:06
|
| python3.11-minimal |
CVE-2025-8291 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-07 18:16 修改: 2026-06-17 10:06
|
| python3.11-minimal |
CVE-2026-0672 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| python3.11-minimal |
CVE-2026-0864 |
中危 |
3.11.2-6+deb12u6 |
|
python: cpython: Python configparser: Configuration injection via crafted multi-line input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51
|
| python3.11-minimal |
CVE-2026-0865 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: wsgiref.headers.Headers allows header newline injection in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| python3.11-minimal |
CVE-2026-11972 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python tarfile module: Denial of Service via improper EOF handling in streaming mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11972
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 23:16 修改: 2026-06-30 16:16
|
| python3.11-minimal |
CVE-2026-1299 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.11-minimal |
CVE-2026-1502 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.11-minimal |
CVE-2026-3276 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.11-minimal |
CVE-2026-3446 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python base64: Incomplete data decoding due to premature stop at padding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43
|
| python3.11-minimal |
CVE-2026-6019 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.11-minimal |
CVE-2026-8328 |
中危 |
3.11.2-6+deb12u6 |
|
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.11-minimal |
CVE-2026-9669 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpam0g |
CVE-2024-10041 |
中危 |
1.5.2-6+deb12u1 |
|
pam: libpam: Libpam vulnerable to read hashed password
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16
|
| libpam0g |
CVE-2024-22365 |
中危 |
1.5.2-6+deb12u1 |
1.5.2-6+deb12u2 |
pam: allowing unprivileged user to block another user namespace
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-02-06 08:15 修改: 2026-06-17 07:11
|
| libpam0g |
CVE-2026-54411 |
中危 |
1.5.2-6+deb12u1 |
|
linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58
|
| libexpat1 |
CVE-2026-32776 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Denial of Service due to NULL pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 14:19 修改: 2026-07-14 13:18
|
| libexpat1 |
CVE-2026-32777 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 14:19 修改: 2026-07-14 13:18
|
| libexpat1 |
CVE-2026-32778 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-16 14:19 修改: 2026-07-14 13:18
|
| libexpat1 |
CVE-2026-50219 |
中危 |
2.5.0-1+deb12u2 |
|
expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57
|
| libexpat1 |
CVE-2026-56132 |
中危 |
2.5.0-1+deb12u2 |
|
expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15
|
| qemu-system-common |
CVE-2020-35503 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL pointer dereference issue in megasas-gen2 host bus adapter
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35503
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 14:15 修改: 2026-06-17 03:13
|
| qemu-system-common |
CVE-2021-20255 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: net: eepro100: stack overflow via infinite recursion
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20255
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-03-09 20:15 修改: 2026-06-17 03:33
|
| qemu-system-common |
CVE-2021-3735 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ahci: deadlock issue leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3735
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-08-26 16:15 修改: 2026-06-17 04:05
|
| qemu-system-common |
CVE-2024-8354 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: usb: assertion failure in usb_ep_get()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8354
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-19 11:15 修改: 2026-06-17 08:22
|
| qemu-system-common |
CVE-2025-11234 |
中危 |
1:7.2+dfsg-7+deb12u16 |
1:7.2+dfsg-7+deb12u18 |
qemu-kvm: VNC WebSocket handshake use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-03 11:15 修改: 2026-06-17 08:29
|
| qemu-system-common |
CVE-2025-14876 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Unbounded allocation in virtio-crypto
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14876
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-18 21:16 修改: 2026-06-17 08:36
|
| qemu-system-common |
CVE-2026-3890 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[hcd-ohci: infinite loop]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3890
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-common |
CVE-2026-48914 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48914
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-12 10:16 修改: 2026-07-15 00:16
|
| qemu-system-common |
CVE-2026-5763 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[virtio-scsi request size mismatch]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5763
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libexpat1 |
CVE-2026-56403 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| libpng16-16 |
CVE-2025-64505 |
中危 |
1.6.39-2 |
1.6.39-2+deb12u1 |
libpng: LIBPNG heap buffer overflow via malformed palette index
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54
|
| libpng16-16 |
CVE-2025-64506 |
中危 |
1.6.39-2 |
1.6.39-2+deb12u1 |
libpng: LIBPNG heap buffer over-read
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54
|
| libpng16-16 |
CVE-2026-33416 |
中危 |
1.6.39-2 |
1.6.39-2+deb12u4 |
libpng: libpng: Arbitrary code execution due to use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37
|
| libpng16-16 |
CVE-2026-33636 |
中危 |
1.6.39-2 |
1.6.39-2+deb12u4 |
libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37
|
| libpng16-16 |
CVE-2026-34757 |
中危 |
1.6.39-2 |
1.6.39-2+deb12u5 |
libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-09 15:16 修改: 2026-06-17 10:39
|
| libexpat1 |
CVE-2026-56404 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat before 2.8.2 has an integer overflow in addBinding.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15
|
| libexpat1 |
CVE-2026-56405 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14
|
| qemu-system-data |
CVE-2020-35503 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL pointer dereference issue in megasas-gen2 host bus adapter
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35503
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 14:15 修改: 2026-06-17 03:13
|
| qemu-system-data |
CVE-2021-20255 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: net: eepro100: stack overflow via infinite recursion
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20255
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-03-09 20:15 修改: 2026-06-17 03:33
|
| qemu-system-data |
CVE-2021-3735 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ahci: deadlock issue leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3735
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-08-26 16:15 修改: 2026-06-17 04:05
|
| qemu-system-data |
CVE-2024-8354 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: usb: assertion failure in usb_ep_get()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8354
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-19 11:15 修改: 2026-06-17 08:22
|
| qemu-system-data |
CVE-2025-11234 |
中危 |
1:7.2+dfsg-7+deb12u16 |
1:7.2+dfsg-7+deb12u18 |
qemu-kvm: VNC WebSocket handshake use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-03 11:15 修改: 2026-06-17 08:29
|
| qemu-system-data |
CVE-2025-14876 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Unbounded allocation in virtio-crypto
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14876
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-18 21:16 修改: 2026-06-17 08:36
|
| qemu-system-data |
CVE-2026-3890 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[hcd-ohci: infinite loop]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3890
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2026-48914 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48914
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-12 10:16 修改: 2026-07-15 00:16
|
| qemu-system-data |
CVE-2026-5763 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[virtio-scsi request size mismatch]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5763
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libexpat1 |
CVE-2026-56406 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29
|
| libexpat1 |
CVE-2026-56409 |
中危 |
2.5.0-1+deb12u2 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21
|
| libexpat1 |
CVE-2026-56410 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18
|
| libexpat1 |
CVE-2026-56411 |
中危 |
2.5.0-1+deb12u2 |
|
expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16
|
| libexpat1 |
CVE-2026-56412 |
中危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31
|
| libpython3.11-minimal |
CVE-2025-11468 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Missing character filtering in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11468
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:30
|
| libpython3.11-minimal |
CVE-2025-12084 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-03 19:15 修改: 2026-06-17 08:31
|
| libpython3.11-minimal |
CVE-2025-12781 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: base64.b64decode() always accepts "+/" characters, despite setting altchars
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12781
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-21 20:16 修改: 2026-06-17 08:32
|
| qemu-system-x86 |
CVE-2020-35503 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL pointer dereference issue in megasas-gen2 host bus adapter
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35503
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 14:15 修改: 2026-06-17 03:13
|
| qemu-system-x86 |
CVE-2021-20255 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: net: eepro100: stack overflow via infinite recursion
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20255
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-03-09 20:15 修改: 2026-06-17 03:33
|
| qemu-system-x86 |
CVE-2021-3735 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ahci: deadlock issue leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3735
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-08-26 16:15 修改: 2026-06-17 04:05
|
| qemu-system-x86 |
CVE-2024-8354 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: usb: assertion failure in usb_ep_get()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8354
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-19 11:15 修改: 2026-06-17 08:22
|
| qemu-system-x86 |
CVE-2025-11234 |
中危 |
1:7.2+dfsg-7+deb12u16 |
1:7.2+dfsg-7+deb12u18 |
qemu-kvm: VNC WebSocket handshake use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-03 11:15 修改: 2026-06-17 08:29
|
| qemu-system-x86 |
CVE-2025-14876 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Unbounded allocation in virtio-crypto
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14876
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-18 21:16 修改: 2026-06-17 08:36
|
| qemu-system-x86 |
CVE-2026-3890 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[hcd-ohci: infinite loop]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3890
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2026-48914 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48914
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-12 10:16 修改: 2026-07-15 00:16
|
| qemu-system-x86 |
CVE-2026-5763 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[virtio-scsi request size mismatch]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5763
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libpython3.11-minimal |
CVE-2025-13837 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Out-of-memory when loading Plist
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13837
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-12-01 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-minimal |
CVE-2025-15282 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection via newlines in data URL mediatype in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15282
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| libpython3.11-minimal |
CVE-2025-15366 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-07-09 18:16
|
| libpython3.11-minimal |
CVE-2025-15367 |
中危 |
3.11.2-6+deb12u6 |
|
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 08:37
|
| libpython3.11-minimal |
CVE-2025-4516 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: CPython DecodeError Handling Vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4516
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-05-15 14:15 修改: 2026-06-17 09:33
|
| libpython3.11-minimal |
CVE-2025-6069 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Python HTMLParser quadratic complexity
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6069
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-17 14:15 修改: 2026-06-17 10:01
|
| libpython3.11-minimal |
CVE-2025-6075 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
python: Quadratic complexity in os.path.expandvars() with user-controlled template
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6075
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-31 17:15 修改: 2026-06-17 10:01
|
| libpython3.11-minimal |
CVE-2025-8194 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Cpython infinite loop when parsing a tarfile
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8194
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-07-28 19:15 修改: 2026-06-17 10:06
|
| qemu-utils |
CVE-2020-35503 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL pointer dereference issue in megasas-gen2 host bus adapter
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35503
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 14:15 修改: 2026-06-17 03:13
|
| qemu-utils |
CVE-2021-20255 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: net: eepro100: stack overflow via infinite recursion
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20255
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-03-09 20:15 修改: 2026-06-17 03:33
|
| qemu-utils |
CVE-2021-3735 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ahci: deadlock issue leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3735
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-08-26 16:15 修改: 2026-06-17 04:05
|
| qemu-utils |
CVE-2024-8354 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: usb: assertion failure in usb_ep_get()
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8354
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-19 11:15 修改: 2026-06-17 08:22
|
| qemu-utils |
CVE-2025-11234 |
中危 |
1:7.2+dfsg-7+deb12u16 |
1:7.2+dfsg-7+deb12u18 |
qemu-kvm: VNC WebSocket handshake use-after-free
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-03 11:15 修改: 2026-06-17 08:29
|
| qemu-utils |
CVE-2025-14876 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Unbounded allocation in virtio-crypto
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14876
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-18 21:16 修改: 2026-06-17 08:36
|
| qemu-utils |
CVE-2026-3890 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[hcd-ohci: infinite loop]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3890
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-utils |
CVE-2026-48914 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48914
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-12 10:16 修改: 2026-07-15 00:16
|
| qemu-utils |
CVE-2026-5763 |
中危 |
1:7.2+dfsg-7+deb12u16 |
|
[virtio-scsi request size mismatch]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5763
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| sed |
CVE-2026-5958 |
中危 |
4.9-1 |
4.9-1+deb12u1 |
sed: GNU sed TOCTOU race condition
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-20 12:16 修改: 2026-06-17 10:59
|
| libpython3.11-minimal |
CVE-2025-8291 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8291
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-07 18:16 修改: 2026-06-17 10:06
|
| libpython3.11-minimal |
CVE-2026-0672 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: Header injection in http.cookies.Morsel in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0672
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| libpython3.11-minimal |
CVE-2026-0864 |
中危 |
3.11.2-6+deb12u6 |
|
python: cpython: Python configparser: Configuration injection via crafted multi-line input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0864
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 18:17 修改: 2026-06-25 19:51
|
| libpython3.11-minimal |
CVE-2026-0865 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: wsgiref.headers.Headers allows header newline injection in Python
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0865
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-20 22:15 修改: 2026-06-17 10:11
|
| libpython3.11-minimal |
CVE-2026-11972 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python tarfile module: Denial of Service via improper EOF handling in streaming mode
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11972
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-23 23:16 修改: 2026-06-30 16:16
|
| libpython3.11-minimal |
CVE-2026-1299 |
中危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u7 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.11-minimal |
CVE-2026-1502 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| ssh |
CVE-2025-61984 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61984
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| ssh |
CVE-2025-61985 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u8 |
openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61985
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-10-06 19:15 修改: 2026-07-14 13:17
|
| ssh |
CVE-2026-35387 |
中危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Information disclosure due to unintended cryptographic algorithm usage
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35387
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| ssh |
CVE-2026-59995 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: sftp client allows attacker to control downloaded file location
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59995
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| ssh |
CVE-2026-59996 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: `scp` file misplacement vulnerability during remote copy
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59996
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:14
|
| ssh |
CVE-2026-59997 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: SFTP security bypass due to command-line argument parsing flaw
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59997
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 17:11
|
| ssh |
CVE-2026-59998 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Undocumented GSSAPIStrictAcceptorCheck behavior impacts security in Windows Active Directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-59998
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:55
|
| ssh |
CVE-2026-60001 |
中危 |
1:9.2p1-2+deb12u7 |
|
openssh: OpenSSH: Brute-force attacks facilitated due to insufficient authentication delay
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-60001
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 01:16 修改: 2026-07-09 16:37
|
| tar |
CVE-2026-5704 |
中危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| libpython3.11-minimal |
CVE-2026-3276 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| util-linux |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| util-linux |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| util-linux |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libpython3.11-minimal |
CVE-2026-3446 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python base64: Incomplete data decoding due to premature stop at padding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3446
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-10 19:16 修改: 2026-06-17 10:43
|
| util-linux-extra |
CVE-2026-13595 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: heap use-after-free in libblkid nested partition probing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-29 09:16 修改: 2026-07-08 03:37
|
| util-linux-extra |
CVE-2026-27456 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| util-linux-extra |
CVE-2026-3184 |
中危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Access control bypass due to improper hostname canonicalization
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43
|
| libpython3.11-minimal |
CVE-2026-6019 |
中危 |
3.11.2-6+deb12u6 |
|
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| zlib1g |
CVE-2026-27171 |
中危 |
1:1.2.13.dfsg-1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|
| libmount1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libmount1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| openssh-sftp-server |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
|
| openssh-sftp-server |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
|
| openssh-sftp-server |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u7 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
|
| openssh-sftp-server |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-09-15 20:15 修改: 2026-06-17 00:43
|
| openssh-sftp-server |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-08-28 08:29 修改: 2026-06-17 01:43
|
| openssh-sftp-server |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-01-31 18:29 修改: 2026-06-17 02:38
|
| openssh-sftp-server |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-06-29 18:15 修改: 2026-06-17 02:54
|
| openssh-sftp-server |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-07-24 14:15 修改: 2026-06-17 02:57
|
| openssh-sftp-server |
CVE-2026-35388 |
低危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| passwd |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| passwd |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libc-bin |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u13 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u13 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libncursesw6 |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libc-bin |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u13 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc-bin |
CVE-2019-9192 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
|
| libc-bin |
CVE-2025-15281 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
|
| libc-bin |
CVE-2026-0861 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
|
| libc-bin |
CVE-2026-4438 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libasound2-data |
CVE-2026-56109 |
低危 |
1.2.8-1 |
|
The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56109
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-22 18:16 修改: 2026-07-14 22:17
|
| bash |
TEMP-0841856-B18BAF |
低危 |
5.2.15-2+b9 |
|
[Privilege escalation possible to other user than root]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libnss3 |
CVE-2017-11695 |
低危 |
2:3.87.1-1+deb12u1 |
|
nss: Heap-buffer-overflow in alloc_segs
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11695
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
|
| libnss3 |
CVE-2017-11696 |
低危 |
2:3.87.1-1+deb12u1 |
|
nss: Heap-buffer-overflow in __hash_open
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11696
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
|
| perl-base |
CVE-2011-4116 |
低危 |
5.36.0-7+deb12u3 |
|
perl: File:: Temp insecure temporary file handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04
|
| perl-base |
CVE-2023-31486 |
低危 |
5.36.0-7+deb12u3 |
|
http-tiny: perl: insecure TLS cert default
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57
|
| procps |
CVE-2023-4016 |
低危 |
2:4.0.2-3 |
|
procps: ps buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36
|
| libpython3.11-stdlib |
CVE-2025-13462 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-stdlib |
CVE-2026-12003 |
低危 |
3.11.2-6+deb12u6 |
|
To allow builds of Python to be run from an in-tree layout (rather tha ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17
|
| libpython3.11-stdlib |
CVE-2026-2297 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.11-stdlib |
CVE-2026-3479 |
低危 |
3.11.2-6+deb12u6 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43
|
| libpython3.11-stdlib |
CVE-2026-4519 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libnss3 |
CVE-2017-11697 |
低危 |
2:3.87.1-1+deb12u1 |
|
nss: Floating Point Exception in __hash_open
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11697
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
|
| libslirp0 |
CVE-2020-7211 |
低危 |
4.7.0-1 |
|
QEMU: Slirp: potential directory traversal using relative paths via tftp server on Windows host
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7211
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-01-21 17:15 修改: 2026-06-17 03:24
|
| libnss3 |
CVE-2017-11698 |
低危 |
2:3.87.1-1+deb12u1 |
|
nss: Heap-buffer-overflow in __get_page
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11698
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2017-12-27 19:29 修改: 2026-06-17 01:02
|
| libnss3 |
CVE-2026-12318 |
低危 |
2:3.87.1-1+deb12u1 |
|
firefox: thunderbird: Incorrect boundary conditions in the Libraries component in NSS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12318
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-16 13:16 修改: 2026-06-17 14:26
|
| bsdutils |
CVE-2022-0563 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| bsdutils |
CVE-2025-14104 |
低危 |
1:2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libsmartcols1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| libsmartcols1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libexpat1 |
CVE-2023-52426 |
低危 |
2.5.0-1+deb12u2 |
|
expat: recursive XML entity expansion vulnerability
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-04 20:15 修改: 2026-06-17 06:42
|
| libexpat1 |
CVE-2024-28757 |
低危 |
2.5.0-1+deb12u2 |
|
expat: XML Entity Expansion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-10 05:15 修改: 2026-06-17 07:21
|
| libexpat1 |
CVE-2026-24515 |
低危 |
2.5.0-1+deb12u2 |
|
libexpat: libexpat null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23
|
| libexpat1 |
CVE-2026-41080 |
低危 |
2.5.0-1+deb12u2 |
|
libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-16 17:16 修改: 2026-07-14 13:18
|
| libsqlite3-0 |
CVE-2021-45346 |
低危 |
3.40.1-2+deb12u2 |
|
sqlite: crafted SQL query allows a malicious user to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-02-14 19:15 修改: 2026-06-17 04:13
|
| libsqlite3-0 |
CVE-2025-29088 |
低危 |
3.40.1-2+deb12u2 |
|
sqlite: Denial of Service in SQLite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-04-10 14:15 修改: 2026-06-17 09:05
|
| libsqlite3-0 |
CVE-2025-70873 |
低危 |
3.40.1-2+deb12u2 |
|
sqlite: SQLite: Information Disclosure via Crafted ZIP File
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-70873
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 19:16 修改: 2026-06-17 10:03
|
| gpgv |
CVE-2022-3219 |
低危 |
2.2.40-1.1+deb12u1 |
|
gnupg: denial of service issue (resource consumption) using compressed packets
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59
|
| libgbm1 |
CVE-2023-45913 |
低危 |
22.3.6-1+deb12u1 |
|
Mesa v23.0.4 was discovered to contain a NULL pointer dereference via ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45913
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
|
| libgbm1 |
CVE-2023-45919 |
低危 |
22.3.6-1+deb12u1 |
|
Mesa 23.0.4 was discovered to contain a buffer over-read in glXQuerySe ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45919
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
|
| libgbm1 |
CVE-2023-45922 |
低危 |
22.3.6-1+deb12u1 |
|
glx_pbuffer.c in Mesa 23.0.4 was discovered to contain a segmentation ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45922
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-27 05:15 修改: 2026-06-17 06:29
|
| libgbm1 |
CVE-2023-45931 |
低危 |
22.3.6-1+deb12u1 |
|
Mesa 23.0.4 was discovered to contain a NULL pointer dereference in ch ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45931
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-03-27 04:15 修改: 2026-06-17 06:29
|
| libgcc-s1 |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
|
| gpgv |
CVE-2026-57062 |
低危 |
2.2.40-1.1+deb12u1 |
|
GnuPG: Incorrect cryptographic message parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16
|
| libgcrypt20 |
CVE-2018-6829 |
低危 |
1.10.1-3 |
|
libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2018-02-07 23:29 修改: 2026-06-17 02:02
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.1-3 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| libblkid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| python3.11 |
CVE-2025-13462 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.11 |
CVE-2026-12003 |
低危 |
3.11.2-6+deb12u6 |
|
To allow builds of Python to be run from an in-tree layout (rather tha ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17
|
| python3.11 |
CVE-2026-2297 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.11 |
CVE-2026-3479 |
低危 |
3.11.2-6+deb12u6 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43
|
| python3.11 |
CVE-2026-4519 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libc6 |
CVE-2010-4756 |
低危 |
2.36-9+deb12u13 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| libc6 |
CVE-2018-20796 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
|
| libpixman-1-0 |
CVE-2023-37769 |
低危 |
0.42.2-1 |
|
stress-test master commit e4c878 was discovered to contain a FPE vulne ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08
|
| libssl3 |
CVE-2025-27587 |
低危 |
3.0.17-1~deb12u2 |
|
OpenSSL 3.0.0 through 3.3.2 on the PowerPC architecture is vulnerable ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27587
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-06-16 22:15 修改: 2026-06-17 09:03
|
| libssl3 |
CVE-2025-68160 |
低危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| libssl3 |
CVE-2025-69418 |
低危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-69420 |
低危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl3 |
CVE-2025-9232 |
低危 |
3.0.17-1~deb12u2 |
3.0.17-1~deb12u3 |
openssl: Out-of-bounds read in HTTP client no_proxy handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-09-30 14:15 修改: 2026-07-14 13:18
|
| libssl3 |
CVE-2026-22795 |
低危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl3 |
CVE-2026-22796 |
低危 |
3.0.17-1~deb12u2 |
3.0.18-1~deb12u2 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl3 |
CVE-2026-34180 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl3 |
CVE-2026-42766 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42767 |
低危 |
3.0.17-1~deb12u2 |
|
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-42770 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl3 |
CVE-2026-45446 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libssl3 |
CVE-2026-7383 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| libssl3 |
CVE-2026-9076 |
低危 |
3.0.17-1~deb12u2 |
3.0.20-1~deb12u2 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libstdc++6 |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
|
| libc6 |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u13 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc6 |
CVE-2019-1010023 |
低危 |
2.36-9+deb12u13 |
|
glibc: running ldd on malicious ELF leads to code execution because of wrong size computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc6 |
CVE-2019-1010024 |
低危 |
2.36-9+deb12u13 |
|
glibc: ASLR bypass using cache of thread stack and heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libc6 |
CVE-2019-1010025 |
低危 |
2.36-9+deb12u13 |
|
glibc: information disclosure of heap addresses of pthread_created thread
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| libsystemd0 |
CVE-2013-4392 |
低危 |
252.39-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libsystemd0 |
CVE-2023-31437 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2023-31438 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2023-31439 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
252.39-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libtasn1-6 |
CVE-2025-13151 |
低危 |
4.19.0-2+deb12u1 |
|
libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33
|
| libc6 |
CVE-2019-9192 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43
|
| libc6 |
CVE-2025-15281 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37
|
| python3.11-minimal |
CVE-2025-13462 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.11-minimal |
CVE-2026-12003 |
低危 |
3.11.2-6+deb12u6 |
|
To allow builds of Python to be run from an in-tree layout (rather tha ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17
|
| python3.11-minimal |
CVE-2026-2297 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.11-minimal |
CVE-2026-3479 |
低危 |
3.11.2-6+deb12u6 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43
|
| python3.11-minimal |
CVE-2026-4519 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| libtinfo6 |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libc6 |
CVE-2026-0861 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: Integer overflow in memalign leads to heap corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11
|
| libc6 |
CVE-2026-4438 |
低危 |
2.36-9+deb12u13 |
2.36-9+deb12u14 |
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-03-20 20:16 修改: 2026-07-14 13:18
|
| libblkid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libglib2.0-0 |
CVE-2012-0039 |
低危 |
2.74.6-2+deb12u7 |
|
glib2: hash table collisions CPU usage DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2012-0039
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2012-01-14 17:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2013-4392 |
低危 |
252.39-1~deb12u1 |
|
systemd: TOCTOU race condition when updating file permissions and SELinux security contexts
漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13
|
| libudev1 |
CVE-2023-31437 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify a seale ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2023-31438 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can truncate a sea ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2023-31439 |
低危 |
252.39-1~deb12u1 |
|
An issue was discovered in systemd 253. An attacker can modify the con ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56
|
| libudev1 |
CVE-2026-40228 |
低危 |
252.39-1~deb12u1 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libglib2.0-0 |
CVE-2026-0988 |
低危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u9 |
glib: GLib: Denial of Service via Integer Overflow in g_buffered_input_stream_peek()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0988
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-21 12:15 修改: 2026-06-17 10:11
|
| libpng16-16 |
CVE-2021-4214 |
低危 |
1.6.39-2 |
|
libpng: hardcoded value leads to heap-overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4214
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2022-08-24 16:15 修改: 2026-06-17 04:19
|
| libpng16-16 |
CVE-2025-28162 |
低危 |
1.6.39-2 |
|
libpng: libpng: Denial of Service via buffer overflow in pngimage utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28162
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
|
| libpng16-16 |
CVE-2025-28164 |
低危 |
1.6.39-2 |
|
libpng: libpng: Denial of Service via buffer overflow in png_create_read_struct() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-28164
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:04
|
| libpng16-16 |
CVE-2026-3713 |
低危 |
1.6.39-2 |
|
libpng: libpng: Heap-based buffer overflow in pnm2png allows information disclosure and denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3713
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-08 06:16 修改: 2026-06-17 10:44
|
| libproc2-0 |
CVE-2023-4016 |
低危 |
2:4.0.2-3 |
|
procps: ps buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-02 05:15 修改: 2026-06-17 06:36
|
| libuuid1 |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| qemu-system-common |
CVE-2019-12067 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL dereference in ahci_commit_buf() leading to DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12067
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 15:15 修改: 2026-06-17 02:14
|
| qemu-system-common |
CVE-2019-12247 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: qemu-guest-agent: integer overflow while running guest-exec command
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12247
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-05-22 15:29 修改: 2026-06-17 02:14
|
| qemu-system-common |
CVE-2019-12928 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: QMP migrate command execution issue
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12928
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-common |
CVE-2019-12929 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: guest agent guest_exec command execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12929
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-common |
CVE-2020-25741 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: fdc: null pointer dereference during r/w data transfer
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25741
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-02 09:15 修改: 2026-06-17 03:07
|
| qemu-system-common |
CVE-2020-25742 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: scsi: lsi: null pointer dereference during memory move
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25742
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-common |
CVE-2020-25743 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ide: null pointer dereference while cancelling i/o operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25743
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-common |
CVE-2022-36648 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: rocker: NULL pointer dereference in of_dpa_cmd_add_l2_flood()
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36648
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-22 19:16 修改: 2026-06-17 04:53
|
| qemu-system-common |
CVE-2024-8612 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: information leak in virtio devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8612
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-20 18:15 修改: 2026-06-17 08:22
|
| qemu-system-common |
CVE-2026-2243 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer out-of-bounds read in VMDK compressed grain parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-19 18:25 修改: 2026-06-17 10:30
|
| libuuid1 |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libxtables12 |
CVE-2012-2663 |
低危 |
1.8.9-2 |
|
iptables: --syn flag bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2012-2663
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2014-02-15 14:57 修改: 2026-04-29 01:13
|
| login |
CVE-2007-5686 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| login |
TEMP-0628843-DBAD28 |
低危 |
1:4.13+dfsg1-1+deb12u1 |
|
[more related to CVE-2005-4890]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libglib2.0-0 |
CVE-2026-1485 |
低危 |
2.74.6-2+deb12u7 |
2.74.6-2+deb12u9 |
Glib: Glib: Local denial of service via buffer underflow in content type parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1485
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-01-27 14:15 修改: 2026-06-17 10:15
|
| libbpf1 |
CVE-2025-29481 |
低危 |
1:1.1.2-0+deb12u1 |
|
libbpf: Heap Buffer Overflow in libbpf
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29481
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-04-07 20:15 修改: 2026-06-17 09:05
|
| coreutils |
CVE-2016-2781 |
低危 |
9.1-1 |
|
coreutils: Non-privileged session can escape to the parent session in chroot
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2017-02-07 15:59 修改: 2026-06-17 00:44
|
| coreutils |
CVE-2017-18018 |
低危 |
9.1-1 |
|
coreutils: race condition vulnerability in chown and chgrp
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2018-01-04 04:29 修改: 2026-06-17 01:12
|
| mount |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| mount |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libdw1 |
CVE-2024-25260 |
低危 |
0.188-2.1 |
|
elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-20 18:15 修改: 2026-06-17 07:15
|
| libdw1 |
CVE-2025-1352 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| ncurses-base |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| libdw1 |
CVE-2025-1365 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 00:15 修改: 2026-06-17 08:38
|
| libdw1 |
CVE-2025-1371 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| ncurses-bin |
CVE-2025-6141 |
低危 |
6.4-4 |
|
gnu-ncurses: ncurses Stack Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01
|
| qemu-system-data |
CVE-2019-12067 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL dereference in ahci_commit_buf() leading to DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12067
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 15:15 修改: 2026-06-17 02:14
|
| qemu-system-data |
CVE-2019-12247 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: qemu-guest-agent: integer overflow while running guest-exec command
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12247
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-05-22 15:29 修改: 2026-06-17 02:14
|
| qemu-system-data |
CVE-2019-12928 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: QMP migrate command execution issue
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12928
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-data |
CVE-2019-12929 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: guest agent guest_exec command execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12929
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-data |
CVE-2020-25741 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: fdc: null pointer dereference during r/w data transfer
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25741
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-02 09:15 修改: 2026-06-17 03:07
|
| qemu-system-data |
CVE-2020-25742 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: scsi: lsi: null pointer dereference during memory move
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25742
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-data |
CVE-2020-25743 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ide: null pointer dereference while cancelling i/o operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25743
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-data |
CVE-2022-36648 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: rocker: NULL pointer dereference in of_dpa_cmd_add_l2_flood()
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36648
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-22 19:16 修改: 2026-06-17 04:53
|
| qemu-system-data |
CVE-2024-8612 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: information leak in virtio devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8612
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-20 18:15 修改: 2026-06-17 08:22
|
| qemu-system-data |
CVE-2026-2243 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer out-of-bounds read in VMDK compressed grain parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-19 18:25 修改: 2026-06-17 10:30
|
| libdw1 |
CVE-2025-1372 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| libdw1 |
CVE-2025-1376 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libdw1 |
CVE-2025-1377 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libelf1 |
CVE-2024-25260 |
低危 |
0.188-2.1 |
|
elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-20 18:15 修改: 2026-06-17 07:15
|
| libelf1 |
CVE-2025-1352 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| libgnutls30 |
CVE-2011-3389 |
低危 |
3.7.9-2+deb12u5 |
|
HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13
|
| libgnutls30 |
CVE-2025-9820 |
低危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u6 |
gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-01-26 20:16 修改: 2026-06-30 09:16
|
| libgnutls30 |
CVE-2026-5419 |
低危 |
3.7.9-2+deb12u5 |
3.7.9-2+deb12u7 |
gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-06-01 21:16 修改: 2026-07-15 15:16
|
| libelf1 |
CVE-2025-1365 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf readelf.c process_symtab buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1365
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 00:15 修改: 2026-06-17 08:38
|
| libelf1 |
CVE-2025-1371 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1371
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| libgssapi-krb5-2 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libgssapi-krb5-2 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libgssapi-krb5-2 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libgssapi-krb5-2 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| libelf1 |
CVE-2025-1372 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-readelf readelf.c print_string_section buffer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1372
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 03:15 修改: 2026-06-17 08:39
|
| openssh-client |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
|
| openssh-client |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
|
| qemu-system-x86 |
CVE-2019-12067 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL dereference in ahci_commit_buf() leading to DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12067
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 15:15 修改: 2026-06-17 02:14
|
| qemu-system-x86 |
CVE-2019-12247 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: qemu-guest-agent: integer overflow while running guest-exec command
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12247
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-05-22 15:29 修改: 2026-06-17 02:14
|
| qemu-system-x86 |
CVE-2019-12928 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: QMP migrate command execution issue
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12928
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-x86 |
CVE-2019-12929 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: guest agent guest_exec command execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12929
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-system-x86 |
CVE-2020-25741 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: fdc: null pointer dereference during r/w data transfer
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25741
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-02 09:15 修改: 2026-06-17 03:07
|
| qemu-system-x86 |
CVE-2020-25742 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: scsi: lsi: null pointer dereference during memory move
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25742
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-x86 |
CVE-2020-25743 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ide: null pointer dereference while cancelling i/o operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25743
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-system-x86 |
CVE-2022-36648 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: rocker: NULL pointer dereference in of_dpa_cmd_add_l2_flood()
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36648
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-22 19:16 修改: 2026-06-17 04:53
|
| qemu-system-x86 |
CVE-2024-8612 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: information leak in virtio devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8612
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-20 18:15 修改: 2026-06-17 08:22
|
| qemu-system-x86 |
CVE-2026-2243 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer out-of-bounds read in VMDK compressed grain parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-19 18:25 修改: 2026-06-17 10:30
|
| openssh-client |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u7 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
|
| openssh-client |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-09-15 20:15 修改: 2026-06-17 00:43
|
| openssh-client |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-08-28 08:29 修改: 2026-06-17 01:43
|
| openssh-client |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-01-31 18:29 修改: 2026-06-17 02:38
|
| openssh-client |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-06-29 18:15 修改: 2026-06-17 02:54
|
| openssh-client |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-07-24 14:15 修改: 2026-06-17 02:57
|
| openssh-client |
CVE-2026-35388 |
低危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| libelf1 |
CVE-2025-1376 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libelf1 |
CVE-2025-1377 |
低危 |
0.188-2.1 |
|
elfutils: GNU elfutils eu-strip strip.c gelf_getsymshndx denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1377
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libk5crypto3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libk5crypto3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libk5crypto3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libk5crypto3 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| coreutils |
CVE-2025-5278 |
低危 |
9.1-1 |
|
coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-05-27 21:15 修改: 2026-07-15 14:17
|
| libpython3.11-minimal |
CVE-2025-13462 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.11-minimal |
CVE-2026-12003 |
低危 |
3.11.2-6+deb12u6 |
|
To allow builds of Python to be run from an in-tree layout (rather tha ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12003
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-16 17:16 修改: 2026-06-23 18:17
|
| libpython3.11-minimal |
CVE-2026-2297 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| qemu-utils |
CVE-2019-12067 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: NULL dereference in ahci_commit_buf() leading to DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12067
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-06-02 15:15 修改: 2026-06-17 02:14
|
| qemu-utils |
CVE-2019-12247 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: qemu-guest-agent: integer overflow while running guest-exec command
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12247
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-05-22 15:29 修改: 2026-06-17 02:14
|
| qemu-utils |
CVE-2019-12928 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: QMP migrate command execution issue
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12928
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-utils |
CVE-2019-12929 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: guest agent guest_exec command execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12929
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-06-24 11:15 修改: 2026-06-17 02:15
|
| qemu-utils |
CVE-2020-25741 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: fdc: null pointer dereference during r/w data transfer
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25741
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-02 09:15 修改: 2026-06-17 03:07
|
| qemu-utils |
CVE-2020-25742 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: scsi: lsi: null pointer dereference during memory move
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25742
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-utils |
CVE-2020-25743 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: ide: null pointer dereference while cancelling i/o operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25743
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-10-06 15:15 修改: 2026-06-17 03:07
|
| qemu-utils |
CVE-2022-36648 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
QEMU: rocker: NULL pointer dereference in of_dpa_cmd_add_l2_flood()
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36648
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2023-08-22 19:16 修改: 2026-06-17 04:53
|
| qemu-utils |
CVE-2024-8612 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: information leak in virtio devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8612
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-09-20 18:15 修改: 2026-06-17 08:22
|
| qemu-utils |
CVE-2026-2243 |
低危 |
1:7.2+dfsg-7+deb12u16 |
|
qemu-kvm: Heap buffer out-of-bounds read in VMDK compressed grain parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-02-19 18:25 修改: 2026-06-17 10:30
|
| libpython3.11-minimal |
CVE-2026-3479 |
低危 |
3.11.2-6+deb12u6 |
|
python: Python pkgutil.get_data(): Path Traversal via improper resource argument validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3479
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-18 19:16 修改: 2026-06-17 10:43
|
| socat |
CVE-2024-54661 |
低危 |
1.7.4.4-2 |
|
socat: arbitrary file overwrite via predictable /tmp directory
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-54661
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-12-04 05:15 修改: 2026-06-17 08:10
|
| libpython3.11-minimal |
CVE-2026-4519 |
低危 |
3.11.2-6+deb12u6 |
3.11.2-6+deb12u8 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-03-20 15:16 修改: 2026-07-15 02:22
|
| apt |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| libkrb5-3 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libkrb5-3 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| openssh-server |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
|
| openssh-server |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
|
| openssh-server |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u7 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
|
| openssh-server |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-09-15 20:15 修改: 2026-06-17 00:43
|
| openssh-server |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-08-28 08:29 修改: 2026-06-17 01:43
|
| openssh-server |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-01-31 18:29 修改: 2026-06-17 02:38
|
| openssh-server |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-06-29 18:15 修改: 2026-06-17 02:54
|
| openssh-server |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-07-24 14:15 修改: 2026-06-17 02:57
|
| openssh-server |
CVE-2026-35388 |
低危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| libkrb5-3 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5-3 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| ssh |
CVE-2007-2243 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabl ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2243
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-04-25 16:19 修改: 2026-04-23 00:35
|
| ssh |
CVE-2007-2768 |
低危 |
1:9.2p1-2+deb12u7 |
|
OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, a ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2007-2768
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2007-05-21 20:30 修改: 2026-04-23 00:35
|
| ssh |
CVE-2008-3234 |
低危 |
1:9.2p1-2+deb12u7 |
|
sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapsh ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2008-3234
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2008-07-18 16:41 修改: 2026-04-23 00:35
|
| ssh |
CVE-2016-20012 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Public key information leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20012
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2021-09-15 20:15 修改: 2026-06-17 00:43
|
| ssh |
CVE-2018-15919 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: User enumeration via malformed packets in authentication requests
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15919
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-08-28 08:29 修改: 2026-06-17 01:43
|
| ssh |
CVE-2019-6110 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Acceptance and display of arbitrary stderr allows for spoofing of scp client output
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6110
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2019-01-31 18:29 修改: 2026-06-17 02:38
|
| ssh |
CVE-2020-14145 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: Observable discrepancy leading to an information leak in the algorithm negotiation
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14145
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-06-29 18:15 修改: 2026-06-17 02:54
|
| ssh |
CVE-2020-15778 |
低危 |
1:9.2p1-2+deb12u7 |
|
openssh: scp allows command injection when using backtick characters in the destination argument
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2020-07-24 14:15 修改: 2026-06-17 02:57
|
| ssh |
CVE-2026-35388 |
低危 |
1:9.2p1-2+deb12u7 |
1:9.2p1-2+deb12u10 |
OpenSSH: OpenSSH: Low integrity impact from unconfirmed proxy-mode multiplexing sessions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35388
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-04-02 17:16 修改: 2026-06-17 10:40
|
| sysvinit-utils |
TEMP-0517018-A83CE6 |
低危 |
3.06-4 |
|
[sysvinit: no-root option in expert installer exposes locally exploitable security flaw]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libapt-pkg6.0 |
CVE-2011-3374 |
低危 |
2.6.1 |
|
It was found that apt-key in apt, all versions, do not correctly valid ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30
|
| tar |
CVE-2005-2541 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
tar: does not properly warn the user when extracting setuid or setgid files
漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27
|
| tar |
TEMP-0290435-0B57B5 |
低危 |
1.34+dfsg-1.2+deb12u1 |
|
[tar's rmt command may have undesired side effects]
漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| dpkg |
CVE-2025-6297 |
低危 |
1.21.22 |
1.21.23 |
It was discovered that dpkg-deb does not properly sanitize directory p ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-07-01 17:15 修改: 2026-07-08 09:16
|
| libkrb5support0 |
CVE-2018-5709 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2018-01-16 09:29 修改: 2026-06-17 02:00
|
| libkrb5support0 |
CVE-2024-26458 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| libkrb5support0 |
CVE-2024-26461 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17
|
| util-linux |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| util-linux |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libkrb5support0 |
CVE-2026-11850 |
低危 |
1.20.1-2+deb12u4 |
|
krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11850
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-11 10:16 修改: 2026-06-17 10:14
|
| libasound2 |
CVE-2026-56109 |
低危 |
1.2.8-1+b1 |
|
The Advanced Linux Sound Architecture (ALSA) library before 1.2.16.1 c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56109
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-06-22 18:16 修改: 2026-07-14 22:17
|
| gcc-12-base |
CVE-2022-27943 |
低危 |
12.2.0-14+deb12u1 |
|
binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37
|
| libc-bin |
CVE-2010-4756 |
低危 |
2.36-9+deb12u13 |
|
glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions
漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13
|
| util-linux-extra |
CVE-2022-0563 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20
|
| util-linux-extra |
CVE-2025-14104 |
低危 |
2.38.1-5+deb12u3 |
|
util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16
|
| libc-bin |
CVE-2018-20796 |
低危 |
2.36-9+deb12u13 |
|
glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53
|
| libc-bin |
CVE-2019-1010022 |
低危 |
2.36-9+deb12u13 |
|
glibc: stack guard protection bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09
|
| bsdutils |
CVE-2026-53613 |
未知 |
1:2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libuuid1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libsqlite3-0 |
CVE-2026-50812 |
未知 |
3.40.1-2+deb12u2 |
|
A NULL pointer dereference in the SQLite Session Extension in SQLite 3 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50812
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 18:16 修改: 2026-07-09 19:48
|
| libsqlite3-0 |
CVE-2026-50813 |
未知 |
3.40.1-2+deb12u2 |
|
An issue in SQLite before Fossil check-in 869a51ae84df allows a local ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50813
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 2026-07-08 18:16 修改: 2026-07-09 19:48
|
| libsmartcols1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-common |
CVE-2026-48004 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48004
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-common |
CVE-2026-6425 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6425
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| perl-base |
CVE-2026-57433 |
未知 |
5.36.0-7+deb12u3 |
|
Storable versions before 3.41 for Perl have a signed integer overflow ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57433
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-07-13 17:17 修改: 2026-07-14 17:47
|
| qemu-utils |
CVE-2026-48004 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48004
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-utils |
CVE-2026-6425 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6425
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| perl-base |
CVE-2026-7017 |
未知 |
5.36.0-7+deb12u3 |
|
HTTP::Tiny versions before 0.095 for Perl forward credential headers t ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7017
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 2026-07-07 19:16 修改: 2026-07-08 15:56
|
| mount |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2026-48004 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48004
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2026-48004 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48004
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-x86 |
CVE-2026-6425 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6425
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| qemu-system-data |
CVE-2026-6425 |
未知 |
1:7.2+dfsg-7+deb12u16 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6425
镜像层: sha256:88f48b5bf7b5e5541fd550154c87fee47c98e50fe841ff013874f99c51eb3da1
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| util-linux-extra |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libmount1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|
| libblkid1 |
CVE-2026-53613 |
未知 |
2.38.1-5+deb12u3 |
|
[Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613
镜像层: sha256:36f5f951f60a9fa1d51878e76fc16ba7b752f4d464a21b758a8ac88f0992c488
发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
|