docker.io/infoblox/dnstools:latest linux/amd64

docker.io/infoblox/dnstools:latest - Trivy安全扫描结果 扫描时间: 2025-02-25 10:21
全部漏洞信息
低危漏洞:1 中危漏洞:17 高危漏洞:18 严重漏洞:18

系统OS: alpine 3.7.0 扫描引擎: Trivy 扫描时间: 2025-02-25 10:21

docker.io/infoblox/dnstools:latest (alpine 3.7.0) (alpine)
低危漏洞:1 中危漏洞:17 高危漏洞:18 严重漏洞:18
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
curl CVE-2018-0500 严重 7.60.0-r1 7.61.0-r0 curl: Heap-based buffer overflow in Curl_smtp_escape_eob() when uploading data over SMTP

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0500

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-07-11 13:29 修改: 2020-08-24 17:37
curl CVE-2018-14618 严重 7.60.0-r1 7.61.1-r0 curl: NTLM password overflow via integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14618

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-09-05 19:29 修改: 2019-04-22 17:48
curl CVE-2018-16839 严重 7.60.0-r1 7.61.1-r1 curl: Integer overflow leading to heap-based buffer overflow in Curl_sasl_create_plain_message()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16839

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 18:29 修改: 2023-11-07 02:53
curl CVE-2018-16840 严重 7.60.0-r1 7.61.1-r1 curl: Use-after-free when closing "easy" handle in Curl_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16840

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 18:29 修改: 2019-10-09 23:36
curl CVE-2018-16842 严重 7.60.0-r1 7.61.1-r1 curl: Heap-based buffer over-read in the curl tool warning formatting

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16842

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 19:29 修改: 2019-08-06 17:15
curl CVE-2019-3822 严重 7.60.0-r1 7.61.1-r2 curl: NTLMv2 type-3 header stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3822

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 03:10
curl CVE-2019-5481 严重 7.60.0-r1 7.61.1-r3 curl: double free due to subsequent call of realloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
curl CVE-2019-5482 严重 7.60.0-r1 7.61.1-r3 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libcurl CVE-2018-0500 严重 7.60.0-r1 7.61.0-r0 curl: Heap-based buffer overflow in Curl_smtp_escape_eob() when uploading data over SMTP

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0500

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-07-11 13:29 修改: 2020-08-24 17:37
libcurl CVE-2018-14618 严重 7.60.0-r1 7.61.1-r0 curl: NTLM password overflow via integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14618

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-09-05 19:29 修改: 2019-04-22 17:48
libcurl CVE-2018-16839 严重 7.60.0-r1 7.61.1-r1 curl: Integer overflow leading to heap-based buffer overflow in Curl_sasl_create_plain_message()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16839

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 18:29 修改: 2023-11-07 02:53
libcurl CVE-2018-16840 严重 7.60.0-r1 7.61.1-r1 curl: Use-after-free when closing "easy" handle in Curl_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16840

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 18:29 修改: 2019-10-09 23:36
libcurl CVE-2018-16842 严重 7.60.0-r1 7.61.1-r1 curl: Heap-based buffer over-read in the curl tool warning formatting

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16842

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-31 19:29 修改: 2019-08-06 17:15
libcurl CVE-2019-3822 严重 7.60.0-r1 7.61.1-r2 curl: NTLMv2 type-3 header stack buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3822

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 03:10
libcurl CVE-2019-5481 严重 7.60.0-r1 7.61.1-r3 curl: double free due to subsequent call of realloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libcurl CVE-2019-5482 严重 7.60.0-r1 7.61.1-r3 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
musl CVE-2019-14697 严重 1.1.18-r2 1.1.18-r4 musl libc through 1.1.23 has an x87 floating-point stack adjustment im ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14697

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2019-08-06 16:15 修改: 2023-03-03 17:43
musl-utils CVE-2019-14697 严重 1.1.18-r2 1.1.18-r4 musl libc through 1.1.23 has an x87 floating-point stack adjustment im ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14697

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2019-08-06 16:15 修改: 2023-03-03 17:43
curl CVE-2018-16890 高危 7.60.0-r1 7.61.1-r2 curl: NTLM type-2 heap out-of-bounds buffer read

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16890

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 02:53
curl CVE-2019-3823 高危 7.60.0-r1 7.61.1-r2 curl: SMTP end-of-response out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3823

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 03:10
libcrypto1.0 CVE-2018-0732 高危 1.0.2o-r0 1.0.2o-r1 openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0732

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-06-12 13:29 修改: 2023-11-07 02:51
bind-tools CVE-2018-5744 高危 9.11.3-r0 9.11.5_p4-r0 bind: A specially crafted packet can cause named to leak memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5744

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-11-05 16:58
bind-tools CVE-2019-6467 高危 9.11.3-r0 9.11.6_p1-r0 bind: flaw in nxredirect can cause assertion failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6467

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-12-18 18:15
bind-libs CVE-2018-5738 高危 9.11.3-r0 9.11.5_p4-r0 bind: Improper handling of configuration allows all clients to perform recursive queries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5738

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2019-08-30 17:15
bind-libs CVE-2018-5740 高危 9.11.3-r0 9.11.4_p1-r0 bind: processing of certain records when "deny-answer-aliases" is in use may trigger an assert leading to a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5740

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2022-04-12 18:34
bind-libs CVE-2018-5743 高危 9.11.3-r0 9.11.6_p1-r0 bind: Limiting simultaneous TCP clients is ineffective

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5743

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2023-11-07 02:58
bind-libs CVE-2018-5744 高危 9.11.3-r0 9.11.5_p4-r0 bind: A specially crafted packet can cause named to leak memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5744

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-11-05 16:58
bind-libs CVE-2019-6467 高危 9.11.3-r0 9.11.6_p1-r0 bind: flaw in nxredirect can cause assertion failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6467

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-12-18 18:15
bind-tools CVE-2018-5738 高危 9.11.3-r0 9.11.5_p4-r0 bind: Improper handling of configuration allows all clients to perform recursive queries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5738

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2019-08-30 17:15
libcurl CVE-2018-16890 高危 7.60.0-r1 7.61.1-r2 curl: NTLM type-2 heap out-of-bounds buffer read

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16890

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 02:53
libcurl CVE-2019-3823 高危 7.60.0-r1 7.61.1-r2 curl: SMTP end-of-response out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3823

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-06 20:29 修改: 2023-11-07 03:10
libressl2.6-libcrypto CVE-2018-0732 高危 2.6.3-r0 2.6.5-r0 openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0732

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2018-06-12 13:29 修改: 2023-11-07 02:51
libressl2.6-libssl CVE-2018-0732 高危 2.6.3-r0 2.6.5-r0 openssl: Malicious server can send large prime to client during DH(E) TLS handshake causing the client to hang

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0732

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2018-06-12 13:29 修改: 2023-11-07 02:51
libxml2 CVE-2018-14404 高危 2.9.7-r0 2.9.8-r1 libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14404

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-07-19 13:29 修改: 2020-09-10 01:15
bind-tools CVE-2018-5740 高危 9.11.3-r0 9.11.4_p1-r0 bind: processing of certain records when "deny-answer-aliases" is in use may trigger an assert leading to a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5740

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2022-04-12 18:34
bind-tools CVE-2018-5743 高危 9.11.3-r0 9.11.6_p1-r0 bind: Limiting simultaneous TCP clients is ineffective

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5743

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2023-11-07 02:58
bind-tools CVE-2018-5745 中危 9.11.3-r0 9.11.5_p4-r0 bind: An assertion failure if a trust anchor rolls over to an unsupported key algorithm when using managed-keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5745

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-11-06 01:15
bind-tools CVE-2019-6465 中危 9.11.3-r0 9.11.5_p4-r0 bind: Controls for zone transfers may not be properly applied to DLZs if the zones are writable

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6465

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-12-16 16:57
bind-tools CVE-2019-6471 中危 9.11.3-r0 9.11.8-r0 bind: Race condition when discarding malformed packets can cause bind to exit with assertion failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6471

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2023-11-07 03:13
bind-libs CVE-2018-5745 中危 9.11.3-r0 9.11.5_p4-r0 bind: An assertion failure if a trust anchor rolls over to an unsupported key algorithm when using managed-keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5745

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-11-06 01:15
bind-libs CVE-2019-6465 中危 9.11.3-r0 9.11.5_p4-r0 bind: Controls for zone transfers may not be properly applied to DLZs if the zones are writable

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6465

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2019-12-16 16:57
bind-libs CVE-2019-6471 中危 9.11.3-r0 9.11.8-r0 bind: Race condition when discarding malformed packets can cause bind to exit with assertion failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6471

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-10-09 16:15 修改: 2023-11-07 03:13
libcrypto1.0 CVE-2018-0734 中危 1.0.2o-r0 1.0.2q-r0 openssl: timing side channel attack in the DSA signature algorithm

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0734

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-10-30 12:29 修改: 2023-11-07 02:51
libcrypto1.0 CVE-2018-0737 中危 1.0.2o-r0 1.0.2o-r1 openssl: RSA key generation cache timing vulnerability in crypto/rsa/rsa_gen.c allows attackers to recover private keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0737

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-04-16 18:29 修改: 2023-11-07 02:51
libcrypto1.0 CVE-2018-5407 中危 1.0.2o-r0 1.0.2q-r0 openssl: Side-channel vulnerability on SMT/Hyper-Threading architectures (PortSmash)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5407

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-11-15 21:29 修改: 2023-11-07 02:58
libressl2.6-libcrypto CVE-2018-0495 中危 2.6.3-r0 2.6.5-r0 ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0495

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2018-06-13 23:29 修改: 2023-11-07 02:51
libcrypto1.0 CVE-2019-1547 中危 1.0.2o-r0 1.0.2t-r0 openssl: side-channel weak encryption vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1547

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-10 17:15 修改: 2024-06-21 19:15
libressl2.6-libssl CVE-2018-0495 中危 2.6.3-r0 2.6.5-r0 ROHNP: Key Extraction Side Channel in Multiple Crypto Libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-0495

镜像层: sha256:cd7100a72410606589a54b932cabd804a17f9ae5b42a1882bd56d263e02b6215

发布日期: 2018-06-13 23:29 修改: 2023-11-07 02:51
libcrypto1.0 CVE-2019-1559 中危 1.0.2o-r0 1.0.2r-r0 openssl: 0-byte record padding oracle

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1559

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-02-27 23:29 修改: 2023-11-07 03:08
libxml2 CVE-2018-14567 中危 2.9.7-r0 2.9.8-r1 libxml2: Infinite loop caused by incorrect error detection during LZMA decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14567

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-08-16 20:29 修改: 2020-09-10 01:15
libxml2 CVE-2018-9251 中危 2.9.7-r0 2.9.8-r1 libxml2: infinite loop in xz_decomp function in xzlib.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9251

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2018-04-04 02:29 修改: 2019-10-03 00:03
bind-libs CVE-2018-5741 中危 9.11.3-r0 9.11.5-r0 bind: Incorrect documentation of krb5-subdomain and ms-subdomain update policies

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5741

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2020-10-20 12:15
bind-tools CVE-2018-5741 中危 9.11.3-r0 9.11.5-r0 bind: Incorrect documentation of krb5-subdomain and ms-subdomain update policies

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5741

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-01-16 20:29 修改: 2020-10-20 12:15
libcrypto1.0 CVE-2019-1563 低危 1.0.2o-r0 1.0.2t-r0 openssl: information disclosure in PKCS7_dataDecode and CMS_decrypt_set1_pkey

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1563

镜像层: sha256:4108d6d95f5e830f0d401f7f95243829f8aa09e4c939ce32bc041ff275fce9a7

发布日期: 2019-09-10 17:15 修改: 2023-11-07 03:08