| libssl1.1 |
CVE-2021-3449 |
高危 |
1.1.1f-1ubuntu2 |
1.1.1j-1ubuntu3 |
openssl: NULL pointer dereference in signature_algorithms processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3449
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2021-03-25 15:15 修改: 2026-06-17 04:05
|
| libssl1.1 |
CVE-2021-3711 |
高危 |
1.1.1f-1ubuntu2 |
1.1.1l-1ubuntu1 |
openssl: SM2 Decryption Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3711
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2021-08-24 15:15 修改: 2026-06-17 04:05
|
| libssl1.1 |
CVE-2022-0778 |
高危 |
1.1.1f-1ubuntu2 |
3.0.2-0ubuntu1 |
openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-03-15 17:15 修改: 2026-06-17 04:21
|
| libssl1.1 |
CVE-2022-3602 |
高危 |
1.1.1f-1ubuntu2 |
3.0.5-2ubuntu2 |
OpenSSL: X.509 Email Address Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3602
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-11-01 18:15 修改: 2026-06-17 04:59
|
| libssl1.1 |
CVE-2022-3786 |
高危 |
1.1.1f-1ubuntu2 |
3.0.5-2ubuntu2 |
OpenSSL: X.509 Email Address Variable Length Buffer Overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3786
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-11-01 18:15 修改: 2026-06-17 05:00
|
| libssl1.1 |
CVE-2023-0286 |
高危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu1 |
openssl: X.400 address type confusion in X.509 GeneralName
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-02-08 20:15 修改: 2026-06-17 05:25
|
| libssl1.1 |
CVE-2026-45447 |
高危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-07-08 13:16
|
| libavahi-common3 |
CVE-2025-59529 |
中危 |
0.8-13ubuntu6.2 |
|
avahi: simple clients denial-of-service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libexif12 |
CVE-2026-40385 |
中危 |
0.6.24-1build2 |
|
libexif: libexif: Information disclosure and crashes via integer overflow in Nikon MakerNote handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40385
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
|
| libexif12 |
CVE-2026-40386 |
中危 |
0.6.24-1build2 |
|
libexif: libexif: Denial of Service and information disclosure via integer underflow in MakerNote decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40386
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-12 19:16 修改: 2026-06-17 10:45
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| libfdisk1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libgif7 |
CVE-2026-23868 |
中危 |
5.2.2-1ubuntu1 |
|
giflib: Giflib: Double-free vulnerability leading to memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23868
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-10 20:16 修改: 2026-06-30 03:17
|
| libgif7 |
CVE-2026-26740 |
中危 |
5.2.2-1ubuntu1 |
|
giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26740
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-18 18:16 修改: 2026-07-07 12:16
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libnghttp2-14 |
CVE-2026-58055 |
中危 |
1.59.0-1ubuntu0.3 |
1.59.0-1ubuntu0.4 |
nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41
|
| libopenjp2-7 |
CVE-2023-39328 |
中危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: denail of service via crafted image file
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-07-09 14:15 修改: 2026-06-26 10:16
|
| libopenjp2-7 |
CVE-2023-39329 |
中危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: Resource exhaustion will occur in the opj_t1_decode_cblks function in the tcd.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39329
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-07-13 03:15 修改: 2026-06-17 06:12
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-06-29 19:16 修改: 2026-07-08 03:34
|
| libpixman-1-0 |
CVE-2023-37769 |
中危 |
0.42.2-1build1 |
|
stress-test master commit e4c878 was discovered to contain a FPE vulne ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-07-17 20:15 修改: 2026-06-17 06:08
|
| libpython3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12-minimal |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16
|
| libpython3.12-minimal |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12-minimal |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12-minimal |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12-minimal |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12-minimal |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20
|
| libpython3.12-minimal |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 22:16 修改: 2026-07-06 13:17
|
| libpython3.12-minimal |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12-minimal |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21
|
| libpython3.12-minimal |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12-minimal |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12-minimal |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpython3.12-stdlib |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12-stdlib |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16
|
| libpython3.12-stdlib |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12-stdlib |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12-stdlib |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12-stdlib |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12-stdlib |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20
|
| libpython3.12-stdlib |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 22:16 修改: 2026-07-06 13:17
|
| libpython3.12-stdlib |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12-stdlib |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21
|
| libpython3.12-stdlib |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12-stdlib |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12-stdlib |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libpython3.12t64 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| libpython3.12t64 |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16
|
| libpython3.12t64 |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| libpython3.12t64 |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| libpython3.12t64 |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| libpython3.12t64 |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| libpython3.12t64 |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20
|
| libpython3.12t64 |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 22:16 修改: 2026-07-06 13:17
|
| libpython3.12t64 |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| libpython3.12t64 |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21
|
| libpython3.12t64 |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| libpython3.12t64 |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| libpython3.12t64 |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| libruby3.2 |
CVE-2025-10990 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
|
rexml: REXML: Denial of Service via inefficient regex parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10990
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-02-27 14:16 修改: 2026-06-26 00:16
|
| libruby3.2 |
CVE-2026-42246 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
3.2.3-1ubuntu0.24.04.8 |
net-imap: ruby: Net::IMAP: Information disclosure via man-in-the-middle attack bypassing TLS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42246
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-09 20:16 修改: 2026-07-07 12:16
|
| libruby3.2 |
CVE-2026-42257 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
3.2.3-1ubuntu0.24.04.8 |
net-imap: Net::IMAP: Arbitrary IMAP command injection via CRLF sequences in unvalidated input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42257
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-09 20:16 修改: 2026-06-17 10:47
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| git |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
|
| git-man |
CVE-2024-52005 |
中危 |
1:2.43.0-1ubuntu7.3 |
|
git: The sideband payload is passed unfiltered to the terminal in git
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52005
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-01-15 18:15 修改: 2026-06-17 08:06
|
| gzip |
CVE-2026-41991 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| gzip |
CVE-2026-41992 |
中危 |
1.12-1ubuntu3.1 |
1.12-1ubuntu3.2 |
GNU gzip contains a global buffer overflow vulnerability in the LZH de ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02
|
| libavahi-client3 |
CVE-2025-59529 |
中危 |
0.8-13ubuntu6.2 |
|
avahi: simple clients denial-of-service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46
|
| libavahi-common-data |
CVE-2025-59529 |
中危 |
0.8-13ubuntu6.2 |
|
avahi: simple clients denial-of-service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59529
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:46
|
| libssl1.1 |
CVE-2021-3712 |
中危 |
1.1.1f-1ubuntu2 |
1.1.1l-1ubuntu1 |
openssl: Read buffer overruns processing ASN.1 strings
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2021-08-24 15:15 修改: 2026-06-17 04:05
|
| libssl1.1 |
CVE-2022-1292 |
中危 |
1.1.1f-1ubuntu2 |
3.0.2-0ubuntu2 |
openssl: c_rehash script allows command injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-05-03 16:15 修改: 2026-06-17 04:22
|
| libssl1.1 |
CVE-2022-1343 |
中危 |
1.1.1f-1ubuntu2 |
3.0.2-0ubuntu2 |
openssl: Signer certificate verification returns inaccurate response when using OCSP_NOCHECKS
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1343
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-05-03 16:15 修改: 2026-06-17 04:22
|
| libssl1.1 |
CVE-2022-2097 |
中危 |
1.1.1f-1ubuntu2 |
3.0.5-2ubuntu1 |
openssl: AES OCB fails to encrypt some bytes
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-07-05 11:15 修改: 2026-06-17 04:41
|
| libssl1.1 |
CVE-2022-4304 |
中危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu1 |
openssl: timing attack in RSA Decryption implementation
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-02-08 20:15 修改: 2026-06-17 05:20
|
| libssl1.1 |
CVE-2022-4450 |
中危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu1 |
openssl: double free after calling PEM_read_bio_ex
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-02-08 20:15 修改: 2026-06-17 05:20
|
| libssl1.1 |
CVE-2023-0215 |
中危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu1 |
openssl: use-after-free following BIO_new_NDEF
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-02-08 20:15 修改: 2026-06-17 05:25
|
| libssl1.1 |
CVE-2023-2650 |
中危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu3 |
openssl: Possible DoS translating ASN.1 object identifiers
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-05-30 14:15 修改: 2026-06-17 05:53
|
| libssl1.1 |
CVE-2023-5363 |
中危 |
1.1.1f-1ubuntu2 |
3.0.10-1ubuntu2.1 |
openssl: Incorrect cipher key and IV length processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-10-25 18:17 修改: 2026-06-17 06:48
|
| libssl1.1 |
CVE-2024-6119 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.4 |
openssl: Possible denial of service in X.509 name checks
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-09-03 16:15 修改: 2026-06-17 08:17
|
| libssl1.1 |
CVE-2025-15467 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-30 03:16
|
| libssl1.1 |
CVE-2025-9230 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.6 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08
|
| libssl1.1 |
CVE-2026-31790 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| libssl1.1 |
CVE-2026-34182 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl1.1 |
CVE-2026-45445 |
中危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: AES-OCB IV Ignored on EVP_Cipher() Path
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libxpm4 |
CVE-2026-4367 |
中危 |
1:3.5.17-1build2 |
|
libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-16 19:16 修改: 2026-06-26 22:16
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| mupdf-tools |
CVE-2023-51103 |
中危 |
1.23.10+ds1-1build3 |
|
A floating point exception (divide-by-zero) vulnerability was discover ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51103
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-12-26 15:15 修改: 2026-06-17 06:40
|
| mupdf-tools |
CVE-2023-51104 |
中危 |
1.23.10+ds1-1build3 |
|
A floating point exception (divide-by-zero) vulnerability was discover ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51104
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-12-26 15:15 修改: 2026-06-17 06:40
|
| mupdf-tools |
CVE-2023-51105 |
中危 |
1.23.10+ds1-1build3 |
|
A floating point exception (divide-by-zero) vulnerability was discover ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51105
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-12-26 15:15 修改: 2026-06-17 06:40
|
| mupdf-tools |
CVE-2023-51106 |
中危 |
1.23.10+ds1-1build3 |
|
A floating point exception (divide-by-zero) vulnerability was discover ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51106
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-12-26 15:15 修改: 2026-06-17 06:40
|
| mupdf-tools |
CVE-2024-24258 |
中危 |
1.23.10+ds1-1build3 |
|
freeglut: memory leak via glutAddSubMenu() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24258
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-02-05 18:15 修改: 2026-06-17 07:14
|
| mupdf-tools |
CVE-2024-24259 |
中危 |
1.23.10+ds1-1build3 |
|
freeglut: memory leak via glutAddMenuEntry() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24259
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-02-05 18:15 修改: 2026-06-17 07:14
|
| mupdf-tools |
CVE-2024-46657 |
中危 |
1.23.10+ds1-1build3 |
|
Artifex Software mupdf v1.24.9 was discovered to contain a segmentatio ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-46657
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-12-10 17:15 修改: 2026-06-17 07:55
|
| mupdf-tools |
CVE-2025-46206 |
中危 |
1.23.10+ds1-1build3 |
|
An issue in Artifex mupdf 1.25.6, 1.25.5 allows a remote attacker to c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46206
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-08-04 18:15 修改: 2026-07-05 16:19
|
| nodejs |
CVE-2024-22018 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: fs.lstat bypasses permission model
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22018
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2024-07-10 02:15 修改: 2026-06-17 07:10
|
| nodejs |
CVE-2024-22020 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: Bypass network import restriction via data URL
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22020
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2024-07-09 02:15 修改: 2026-06-17 07:10
|
| nodejs |
CVE-2024-27982 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: HTTP Request Smuggling via Content Length Obfuscation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27982
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2024-05-07 17:15 修改: 2026-06-17 07:20
|
| nodejs |
CVE-2024-27983 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: CONTINUATION frames DoS
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27983
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2024-04-09 01:15 修改: 2026-06-17 07:20
|
| nodejs |
CVE-2025-23085 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23085
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2025-02-07 07:15 修改: 2026-06-17 08:51
|
| nodejs |
CVE-2025-23166 |
中危 |
20.20.2-1nodesource1 |
|
nodejs: Remote Crash via SignTraits::DeriveBits() in Node.js
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23166
镜像层: sha256:a32e13f5a22e93deea905e2cb84a44ebab3e39f9aa7d434076ab6dd12f5a89ef
发布日期: 2025-05-19 02:15 修改: 2026-06-17 08:52
|
| openssh-client |
CVE-2026-55655 |
中危 |
1:9.6p1-3ubuntu13.16 |
|
openssh: Local MITM of X11 forwarding via abstract UNIX socket pre-binding in Red Hat Enterprise Linux OpenSSH client versions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55655
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-23 04:17 修改: 2026-07-08 14:17
|
| python3.12 |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.12 |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16
|
| python3.12 |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.12 |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.12 |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.12 |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.12 |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20
|
| python3.12 |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 22:16 修改: 2026-07-06 13:17
|
| python3.12 |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.12 |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21
|
| python3.12 |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| python3.12 |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.12 |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| python3.12-minimal |
CVE-2025-13462 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: cpython: `tarfile` module misinterprets crafted tar archives leading to data integrity issues
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13462
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-12 18:16 修改: 2026-06-17 08:34
|
| python3.12-minimal |
CVE-2025-69534 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python-markdown: denial of service via malformed HTML-like sequences
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69534
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-05 15:16 修改: 2026-06-30 03:16
|
| python3.12-minimal |
CVE-2026-1299 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: email header injection due to unquoted newlines
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1299
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-23 17:16 修改: 2026-06-17 10:15
|
| python3.12-minimal |
CVE-2026-1502 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: HTTP header injection via CR/LF in proxy tunnel headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1502
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 18:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-2297 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: CPython: Logging Bypass in Legacy .pyc File Handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2297
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-04 23:16 修改: 2026-06-17 10:30
|
| python3.12-minimal |
CVE-2026-3276 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python unicodedata: Denial of Service due to excessive CPU consumption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3276
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-03 16:16 修改: 2026-06-17 10:43
|
| python3.12-minimal |
CVE-2026-3644 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Incomplete control character validation in http.cookies
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3644
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-4224 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
cpython: Stack overflow parsing XML with deeply nested DTD content models
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4224
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 18:16 修改: 2026-06-17 10:56
|
| python3.12-minimal |
CVE-2026-4519 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-20 15:16 修改: 2026-06-30 03:20
|
| python3.12-minimal |
CVE-2026-4786 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: cpython: Python: Arbitrary code execution via command injection in webbrowser.open() API
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4786
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 22:16 修改: 2026-07-06 13:17
|
| python3.12-minimal |
CVE-2026-6019 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Cross-Site Scripting (XSS) vulnerability in http.cookies module
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6019
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-22 20:16 修改: 2026-06-17 11:00
|
| python3.12-minimal |
CVE-2026-6100 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6100
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-13 18:16 修改: 2026-06-30 03:21
|
| python3.12-minimal |
CVE-2026-7774 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: CPython: Python tarfile: Arbitrary file write via crafted link entries
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7774
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-04 16:16 修改: 2026-07-07 18:16
|
| python3.12-minimal |
CVE-2026-8328 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4 ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8328
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-13 21:16 修改: 2026-06-30 16:16
|
| python3.12-minimal |
CVE-2026-9669 |
中危 |
3.12.3-1ubuntu0.13 |
3.12.3-1ubuntu0.15 |
python: Python: Denial of Service via out-of-bounds write in BZ2 decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9669
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-08 23:17 修改: 2026-07-07 18:16
|
| ruby3.2 |
CVE-2025-10990 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
|
rexml: REXML: Denial of Service via inefficient regex parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10990
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-02-27 14:16 修改: 2026-06-26 00:16
|
| ruby3.2 |
CVE-2026-42246 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
3.2.3-1ubuntu0.24.04.8 |
net-imap: ruby: Net::IMAP: Information disclosure via man-in-the-middle attack bypassing TLS
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42246
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-09 20:16 修改: 2026-07-07 12:16
|
| ruby3.2 |
CVE-2026-42257 |
中危 |
3.2.3-1ubuntu0.24.04.7 |
3.2.3-1ubuntu0.24.04.8 |
net-imap: Net::IMAP: Arbitrary IMAP command injection via CRLF sequences in unvalidated input
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42257
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-05-09 20:16 修改: 2026-06-17 10:47
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.2 |
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.1 |
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| vim |
CVE-2026-55693 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
Vim is an open source, command line text editor. Prior to 9.2.0653, th ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17
|
| vim |
CVE-2026-55892 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via crafted spell file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16
|
| vim |
CVE-2026-55895 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via Vimscript code injection in netrw plugin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| vim |
CVE-2026-57452 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Out-of-bounds Read with libsodium-encrypted Files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12
|
| vim |
CVE-2026-57455 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via stack out-of-bounds write in spell_soundfold_sofo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23
|
| vim |
CVE-2026-57456 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via malicious docstrings in Python omni-completion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| vim-common |
CVE-2026-55693 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
Vim is an open source, command line text editor. Prior to 9.2.0653, th ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17
|
| vim-common |
CVE-2026-55892 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via crafted spell file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16
|
| vim-common |
CVE-2026-55895 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via Vimscript code injection in netrw plugin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| vim-common |
CVE-2026-57452 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Out-of-bounds Read with libsodium-encrypted Files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12
|
| vim-common |
CVE-2026-57455 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via stack out-of-bounds write in spell_soundfold_sofo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23
|
| vim-common |
CVE-2026-57456 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via malicious docstrings in Python omni-completion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| vim-runtime |
CVE-2026-55693 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
Vim is an open source, command line text editor. Prior to 9.2.0653, th ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17
|
| vim-runtime |
CVE-2026-55892 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via crafted spell file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16
|
| vim-runtime |
CVE-2026-55895 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via Vimscript code injection in netrw plugin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| vim-runtime |
CVE-2026-57452 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Out-of-bounds Read with libsodium-encrypted Files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12
|
| vim-runtime |
CVE-2026-57455 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via stack out-of-bounds write in spell_soundfold_sofo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23
|
| vim-runtime |
CVE-2026-57456 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via malicious docstrings in Python omni-completion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| wget |
CVE-2021-31879 |
中危 |
1.21.4-1ubuntu4.1 |
|
wget: authorization header disclosure on redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2021-04-29 05:15 修改: 2026-06-17 03:52
|
| xdg-utils |
CVE-2025-52968 |
中危 |
1.1.3-4.1ubuntu3 |
|
xdg-utils: xdg-open bypassing SameSite=Strict
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52968
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-06-23 15:15 修改: 2026-06-17 09:37
|
| xxd |
CVE-2026-55693 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
Vim is an open source, command line text editor. Prior to 9.2.0653, th ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55693
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 14:17
|
| xxd |
CVE-2026-55892 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via crafted spell file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55892
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 19:16
|
| xxd |
CVE-2026-55895 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via Vimscript code injection in netrw plugin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55895
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| xxd |
CVE-2026-57452 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Out-of-bounds Read with libsodium-encrypted Files
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57452
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:12
|
| xxd |
CVE-2026-57455 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Denial of Service via stack out-of-bounds write in spell_soundfold_sofo()
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57455
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 04:23
|
| xxd |
CVE-2026-57456 |
中危 |
2:9.1.0016-1ubuntu7.16 |
2:9.1.0016-1ubuntu7.17 |
vim: Vim: Arbitrary code execution via malicious docstrings in Python omni-completion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57456
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-25 16:16 修改: 2026-06-26 05:16
|
| libsystemd-shared |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libtexlua53-5 |
CVE-2019-12360 |
低危 |
2023.20230311.66589-9build3 |
|
xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12360
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-27 23:29 修改: 2026-06-17 02:14
|
| libtexlua53-5 |
CVE-2019-12493 |
低危 |
2023.20230311.66589-9build3 |
|
A stack-based buffer over-read exists in PostScriptFunction::transform ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12493
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-31 02:29 修改: 2026-06-17 02:14
|
| libtexlua53-5 |
CVE-2019-9587 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9587
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libtexlua53-5 |
CVE-2019-9588 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9588
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libtinfo6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libptexenc1 |
CVE-2019-12493 |
低危 |
2023.20230311.66589-9build3 |
|
A stack-based buffer over-read exists in PostScriptFunction::transform ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12493
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-31 02:29 修改: 2026-06-17 02:14
|
| libptexenc1 |
CVE-2019-9587 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9587
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libzzip-0-13t64 |
CVE-2018-17828 |
低危 |
0.13.72+dfsg.1-1.2build1 |
|
zziplib: directory traversal in unzzip_cat in the bins/unzzipcat-mem.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17828
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2018-10-01 08:29 修改: 2026-06-17 01:46
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libptexenc1 |
CVE-2019-9588 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9588
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libcairo2 |
CVE-2018-18064 |
低危 |
1.18.0-3build1 |
|
cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46
|
| libcurl3t64-gnutls |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| libcurl4t64 |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| libdw1t64 |
CVE-2025-1352 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| libdw1t64 |
CVE-2025-1376 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libelf1t64 |
CVE-2025-1352 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-readelf libdw_alloc.c __libdw_thread_tail memory corruption
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1352
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-02-16 15:15 修改: 2026-06-17 08:38
|
| libelf1t64 |
CVE-2025-1376 |
低危 |
0.190-1.1ubuntu0.1 |
|
elfutils: GNU elfutils eu-strip elf_strptr.c elf_strptr denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1376
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-02-17 05:15 修改: 2026-06-17 08:39
|
| libavahi-client3 |
CVE-2024-52615 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Uses Constant Source Port
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| ncurses-base |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| ncurses-bin |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libavahi-common3 |
CVE-2024-52615 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Uses Constant Source Port
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| libexif12 |
CVE-2026-32775 |
低危 |
0.6.24-1build2 |
|
libexif: libexif: Buffer overwrite via integer underflow in MakerNotes decoding
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32775
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36
|
| libavahi-common3 |
CVE-2024-52616 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Predictable Transaction IDs
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| libruby3.2 |
CVE-2025-58767 |
低危 |
3.2.3-1ubuntu0.24.04.7 |
|
rexml: REXML denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58767
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-09-17 18:15 修改: 2026-06-17 09:44
|
| libavahi-client3 |
CVE-2024-52616 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Predictable Transaction IDs
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2ubuntu0.1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| curl |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
libcurl: libcurl: Use-after-free vulnerability leading to Denial of Service
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-07-03 07:16 修改: 2026-07-07 18:02
|
| openssh-client |
CVE-2026-55654 |
低危 |
1:9.6p1-3ubuntu13.16 |
|
openssh: Heap out-of-bounds read in Red Hat Enterprise Linux versions of OpenSSH GSSAPI indicator cleanup due to missing NULL sentinel termination
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55654
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-06-23 04:17 修改: 2026-07-08 14:17
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| patch |
CVE-2018-6952 |
低危 |
2.7.6-7build3 |
|
patch: Double free of memory in pch.c:another_hunk() causes a crash
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6952
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2018-02-13 19:29 修改: 2026-06-17 02:02
|
| patch |
CVE-2021-45261 |
低危 |
2.7.6-7build3 |
|
patch: Invalid Pointer via another_hunk function
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45261
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2021-12-22 18:15 修改: 2026-06-17 04:13
|
| libavahi-common-data |
CVE-2024-52615 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Uses Constant Source Port
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52615
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| libharfbuzz0b |
CVE-2026-22693 |
低危 |
8.3.0-2build2 |
|
harfbuzz: Null Pointer Dereference in harfbuzz
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22693
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-01-10 06:15 修改: 2026-06-17 10:20
|
| libicu74 |
CVE-2025-5222 |
低危 |
74.2-1ubuntu3.1 |
|
icu: Stack buffer overflow in the SRBRoot::addTag function
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5222
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-05-27 21:15 修改: 2026-06-30 05:17
|
| libjbig2dec0 |
CVE-2023-46361 |
低危 |
0.20-1build3 |
|
Artifex Software jbig2dec v0.20 was discovered to contain a SEGV vulne ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46361
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2023-10-31 06:15 修改: 2026-06-17 06:30
|
| libkpathsea6 |
CVE-2019-12360 |
低危 |
2023.20230311.66589-9build3 |
|
xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12360
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-27 23:29 修改: 2026-06-17 02:14
|
| libkpathsea6 |
CVE-2019-12493 |
低危 |
2023.20230311.66589-9build3 |
|
A stack-based buffer over-read exists in PostScriptFunction::transform ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12493
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-31 02:29 修改: 2026-06-17 02:14
|
| libkpathsea6 |
CVE-2019-9587 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9587
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libkpathsea6 |
CVE-2019-9588 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9588
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libavahi-common-data |
CVE-2024-52616 |
低危 |
0.8-13ubuntu6.2 |
|
avahi: Avahi Wide-Area DNS Predictable Transaction IDs
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52616
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2024-11-21 21:15 修改: 2026-06-29 23:16
|
| libncurses6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libncursesw6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libcairo-gobject2 |
CVE-2017-7475 |
低危 |
1.18.0-3build1 |
|
cairo: NULL pointer dereference with a crafted font file
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24
|
| libnss-systemd |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libcairo-gobject2 |
CVE-2018-18064 |
低危 |
1.18.0-3build1 |
|
cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46
|
| libcairo-script-interpreter2 |
CVE-2017-7475 |
低危 |
1.18.0-3build1 |
|
cairo: NULL pointer dereference with a crafted font file
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24
|
| libopenjp2-7 |
CVE-2019-6988 |
低危 |
2.5.0-2ubuntu0.5 |
|
openjpeg: DoS via memory exhaustion in opj_decompress
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6988
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-01-28 16:29 修改: 2026-06-17 02:39
|
| libcairo-script-interpreter2 |
CVE-2018-18064 |
低危 |
1.18.0-3build1 |
|
cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document
漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2018-10-08 18:29 修改: 2026-06-17 01:46
|
| libpam-systemd |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libcairo2 |
CVE-2017-7475 |
低危 |
1.18.0-3build1 |
|
cairo: NULL pointer dereference with a crafted font file
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-05-19 20:29 修改: 2026-06-17 01:24
|
| libptexenc1 |
CVE-2019-12360 |
低危 |
2023.20230311.66589-9build3 |
|
xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12360
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-27 23:29 修改: 2026-06-17 02:14
|
| libssl1.1 |
CVE-2021-23840 |
低危 |
1.1.1f-1ubuntu2 |
1.1.1j-1ubuntu1 |
openssl: integer overflow in CipherUpdate
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2021-02-16 17:15 修改: 2026-06-17 03:38
|
| libssl1.1 |
CVE-2022-1434 |
低危 |
1.1.1f-1ubuntu2 |
3.0.2-0ubuntu2 |
openssl: Incorrect MAC key used in the RC4-MD5 ciphersuite
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1434
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-05-03 16:15 修改: 2026-06-17 04:22
|
| libssl1.1 |
CVE-2022-1473 |
低危 |
1.1.1f-1ubuntu2 |
3.0.2-0ubuntu2 |
openssl: OPENSSL_LH_flush() breaks reuse of memory
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1473
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-05-03 16:15 修改: 2026-06-17 04:22
|
| libssl1.1 |
CVE-2022-3358 |
低危 |
1.1.1f-1ubuntu2 |
3.0.5-2ubuntu2 |
openssl: Using a Custom Cipher with NID_undef may lead to NULL encryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3358
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-10-11 15:15 修改: 2026-06-17 04:59
|
| libssl1.1 |
CVE-2022-3996 |
低危 |
1.1.1f-1ubuntu2 |
3.0.7-1ubuntu1 |
openssl: double locking leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3996
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2022-12-13 16:15 修改: 2026-06-17 05:00
|
| libssl1.1 |
CVE-2023-0464 |
低危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu2 |
openssl: Denial of service by excessive resource usage in verifying X509 policy constraints
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-03-22 17:15 修改: 2026-06-17 05:25
|
| libssl1.1 |
CVE-2023-0465 |
低危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu2 |
openssl: Invalid certificate policies in leaf certificates are silently ignored
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-03-28 15:15 修改: 2026-06-17 05:25
|
| libssl1.1 |
CVE-2023-0466 |
低危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu2 |
openssl: Certificate policy check not enabled
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-03-28 15:15 修改: 2026-06-17 05:25
|
| libssl1.1 |
CVE-2023-1255 |
低危 |
1.1.1f-1ubuntu2 |
3.0.8-1ubuntu3 |
openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-04-20 17:15 修改: 2026-06-17 05:27
|
| libssl1.1 |
CVE-2023-5678 |
低危 |
1.1.1f-1ubuntu2 |
3.0.10-1ubuntu4 |
openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2023-11-06 16:15 修改: 2026-06-17 06:49
|
| libssl1.1 |
CVE-2023-6129 |
低危 |
1.1.1f-1ubuntu2 |
3.0.10-1ubuntu4 |
openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-01-09 17:15 修改: 2026-06-17 06:50
|
| libssl1.1 |
CVE-2023-6237 |
低危 |
1.1.1f-1ubuntu2 |
3.0.10-1ubuntu4 |
openssl: Excessive time spent checking invalid RSA public keys
漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-04-25 07:15 修改: 2026-06-17 06:50
|
| libssl1.1 |
CVE-2024-0727 |
低危 |
1.1.1f-1ubuntu2 |
3.0.10-1ubuntu4 |
openssl: denial of service via null dereference
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-01-26 09:15 修改: 2026-06-17 06:54
|
| ruby3.2 |
CVE-2025-58767 |
低危 |
3.2.3-1ubuntu0.24.04.7 |
|
rexml: REXML denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58767
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2025-09-17 18:15 修改: 2026-06-17 09:44
|
| systemd |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| systemd-dev |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| systemd-resolved |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| systemd-sysv |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| systemd-timesyncd |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| libssl1.1 |
CVE-2024-13176 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.5 |
openssl: Timing side-channel in ECDSA signature computation
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01
|
| libssl1.1 |
CVE-2024-2511 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.2 |
openssl: Unbounded memory growth with session handling in TLSv1.3
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-04-08 14:15 修改: 2026-06-17 07:24
|
| texlive |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-base |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-binaries |
CVE-2019-12360 |
低危 |
2023.20230311.66589-9build3 |
|
xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12360
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-27 23:29 修改: 2026-06-17 02:14
|
| texlive-binaries |
CVE-2019-12493 |
低危 |
2023.20230311.66589-9build3 |
|
A stack-based buffer over-read exists in PostScriptFunction::transform ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12493
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-31 02:29 修改: 2026-06-17 02:14
|
| texlive-binaries |
CVE-2019-9587 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9587
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| texlive-binaries |
CVE-2019-9588 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9588
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| texlive-fonts-recommended |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-latex-base |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-latex-recommended |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-pictures |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| texlive-xetex |
CVE-2017-17513 |
低危 |
2023.20240207-1 |
|
texlive: Command injection in mswin/mtxrun.lua and lualibs/lualibs-os.lua
漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17513
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2017-12-14 16:29 修改: 2026-06-17 01:10
|
| libssl1.1 |
CVE-2024-4603 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.2 |
openssl: Excessive time spent checking DSA keys and parameters
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-05-16 16:15 修改: 2026-06-17 08:02
|
| libssl1.1 |
CVE-2024-4741 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.2 |
openssl: Use After Free with SSL_free_buffers
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-11-13 11:15 修改: 2026-06-17 08:02
|
| libssl1.1 |
CVE-2024-5535 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.2 |
openssl: SSL_select_next_proto buffer overread
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-06-27 11:15 修改: 2026-06-17 08:16
|
| libssl1.1 |
CVE-2024-9143 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.5 |
openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2024-10-16 17:15 修改: 2026-06-17 08:24
|
| libssl1.1 |
CVE-2025-68160 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58
|
| libssl1.1 |
CVE-2025-69418 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2025-69419 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2025-69420 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Denial of Service via malformed TimeStamp Response
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2025-69421 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00
|
| libssl1.1 |
CVE-2026-22795 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl1.1 |
CVE-2026-22796 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.7 |
openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20
|
| libssl1.1 |
CVE-2026-28387 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28388 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28389 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service vulnerability in CMS processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-28390 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28
|
| libssl1.1 |
CVE-2026-31789 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.9 |
openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34
|
| libssl1.1 |
CVE-2026-34180 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38
|
| libssl1.1 |
CVE-2026-42766 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: Possible NULL Dereference in Password-Based CMS Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl1.1 |
CVE-2026-42767 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl1.1 |
CVE-2026-42770 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: FFC-DH Peer Validation Uses Attacker-Supplied q
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48
|
| libssl1.1 |
CVE-2026-45446 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52
|
| xdg-utils |
CVE-2022-4055 |
低危 |
1.1.3-4.1ubuntu3 |
|
xdg-utils: improper parse of mailto URIs allows bypass of Thunderbird security mechanism for attachments
漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4055
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2022-11-19 00:15 修改: 2026-06-17 05:19
|
| libssl1.1 |
CVE-2026-7383 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02
|
| libssl1.1 |
CVE-2026-9076 |
低危 |
1.1.1f-1ubuntu2 |
3.0.13-0ubuntu3.11 |
openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076
镜像层: sha256:e31d77699d90faeb5155605ca3cab381b6b6e9bd7e64d67848399f278bf91f0a
发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04
|
| libsynctex2 |
CVE-2019-12360 |
低危 |
2023.20230311.66589-9build3 |
|
xpdf: buffer over-read via crafted PDF document leads to DoS or memory leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12360
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-27 23:29 修改: 2026-06-17 02:14
|
| libsynctex2 |
CVE-2019-12493 |
低危 |
2023.20230311.66589-9build3 |
|
A stack-based buffer over-read exists in PostScriptFunction::transform ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12493
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-05-31 02:29 修改: 2026-06-17 02:14
|
| libsynctex2 |
CVE-2019-9587 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9587
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| libsynctex2 |
CVE-2019-9588 |
低危 |
2023.20230311.66589-9build3 |
|
漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9588
镜像层: sha256:ca6a17cd2ccb2796d64dcc0ed01dbb36ae00c4a18030aba9c797e2336dca1fa4
发布日期: 2019-03-06 08:29 修改: 2026-06-17 02:43
|
| zlib1g |
CVE-2026-27171 |
低危 |
1:1.3.dfsg-3.1ubuntu2.1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|