docker.io/istio/examples-bookinfo-reviews-v1:1.16.4 linux/amd64

docker.io/istio/examples-bookinfo-reviews-v1:1.16.4 - Trivy安全扫描结果扫描时间: 2024-12-24 09:03

全部漏洞信息

低危漏洞:73

中危漏洞:59

高危漏洞:12

严重漏洞:0

系统OS: ubuntu 18.04 扫描引擎: Trivy 扫描时间: 2024-12-24 09:03

docker.io/istio/examples-bookinfo-reviews-v1:1.16.4 (ubuntu 18.04) (ubuntu)

低危漏洞:73

中危漏洞:57

高危漏洞:12

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libssl1.1	CVE-2020-1971	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.7	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-3449	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.9	openssl: NULL pointer dereference in signature_algorithms processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3449 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-03-25 15:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-3711	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.13	openssl: SM2 Decryption Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3711 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-0778	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.15	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0286	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libsystemd0	CVE-2021-33910	高危	237-3ubuntu10.42	237-3ubuntu10.49	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libudev1	CVE-2021-33910	高危	237-3ubuntu10.42	237-3ubuntu10.49	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
openssl	CVE-2020-1971	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.7	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
openssl	CVE-2021-3449	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.9	openssl: NULL pointer dereference in signature_algorithms processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3449 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-03-25 15:15 修改: 2024-06-21 19:15
openssl	CVE-2021-3711	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.13	openssl: SM2 Decryption Buffer Overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3711 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl	CVE-2022-0778	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.15	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0286	高危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libgnutls30	CVE-2022-2509	中危	3.5.18-1ubuntu1.4	3.5.18-1ubuntu1.6	gnutls: Double free during gnutls_pkcs7_verify 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2509 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-01 14:15 修改: 2023-11-07 03:46
libhogweed4	CVE-2021-20305	中危	3.4-1	3.4-1ubuntu0.1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libhogweed4	CVE-2021-3580	中危	3.4-1	3.4.1-0ubuntu0.18.04.1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
liblz4-1	CVE-2021-3520	中危	0.0~r131-2ubuntu3	0.0~r131-2ubuntu3.1	lz4: memory corruption due to an integer overflow bug caused by memmove argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25
liblzma5	CVE-2022-1271	中危	5.2.2-1.3	5.2.2-1.3ubuntu0.1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libncurses5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libncursesw5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libnettle6	CVE-2021-20305	中危	3.4-1	3.4-1ubuntu0.1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libnettle6	CVE-2021-3580	中危	3.4-1	3.4.1-0ubuntu0.18.04.1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libp11-kit0	CVE-2020-29361	中危	0.23.9-2	0.23.9-2ubuntu0.1	p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21
libp11-kit0	CVE-2020-29362	中危	0.23.9-2	0.23.9-2ubuntu0.1	p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50
libp11-kit0	CVE-2020-29363	中危	0.23.9-2	0.23.9-2ubuntu0.1	p11-kit: out-of-bounds write in p11_rpc_buffer_get_byte_array_value function in rpc-message.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29363 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-16 14:15 修改: 2022-05-12 14:47
libss2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
apt	CVE-2020-27350	中危	1.6.12ubuntu0.1	1.6.12ubuntu0.2	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
ca-certificates	CVE-2022-23491	中危	20190110~18.04.1	20211016ubuntu0.18.04.1	python-certifi: untrusted root certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23491 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-12-07 22:15 修改: 2023-03-24 18:12
dpkg	CVE-2022-1664	中危	1.19.0.5ubuntu2.3	1.19.0.5ubuntu2.4	Dpkg::Source::Archive in dpkg, the Debian package management system, b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1664 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-05-26 14:15 修改: 2022-12-03 02:19
e2fsprogs	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
gpgv	CVE-2022-34903	中危	2.2.4-1ubuntu1.3	2.2.4-1ubuntu1.6	gpg: Signature spoofing via status line injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48
libssl1.1	CVE-2021-23841	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.8	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-3712	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.13	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-1292	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.17	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
libssl1.1	CVE-2022-2068	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.19	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
libssl1.1	CVE-2022-2097	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.20	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-4304	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2022-4450	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0215	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-2650	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.23	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
gzip	CVE-2022-1271	中危	1.6-5ubuntu1	1.6-5ubuntu1.2	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libsystemd0	CVE-2022-2526	中危	237-3ubuntu10.42	237-3ubuntu10.56	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
libsystemd0	CVE-2022-3821	中危	237-3ubuntu10.42	237-3ubuntu10.57	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
libtinfo5	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libapt-pkg5.0	CVE-2020-27350	中危	1.6.12ubuntu0.1	1.6.12ubuntu0.2	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libudev1	CVE-2022-2526	中危	237-3ubuntu10.42	237-3ubuntu10.56	systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17
libudev1	CVE-2022-3821	中危	237-3ubuntu10.42	237-3ubuntu10.57	systemd: buffer overrun in format_timespan() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51
libzstd1	CVE-2021-24031	中危	1.3.3+dfsg-2ubuntu1.1	1.3.3+dfsg-2ubuntu1.2	zstd: adds read permissions to files while being compressed or uncompressed 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-24031 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-03-04 21:15 修改: 2021-04-14 15:28
libzstd1	CVE-2021-24032	中危	1.3.3+dfsg-2ubuntu1.1	1.3.3+dfsg-2ubuntu1.2	zstd: Race condition allows attacker to access world-readable destination file 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-24032 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-03-04 21:15 修改: 2021-04-28 20:04
ncurses-base	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-29491	中危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libc-bin	CVE-2021-3999	中危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libc6	CVE-2021-3999	中危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Off-by-one buffer overflow/underflow in getcwd() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43
libcom-err2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libext2fs2	CVE-2022-1304	中危	1.44.1-1ubuntu1.3	1.44.1-1ubuntu1.4	e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libgcrypt20	CVE-2021-40528	中危	1.8.1-4ubuntu1.2	1.8.1-4ubuntu1.3	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
openssl	CVE-2021-23841	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.8	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2021-3712	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.13	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl	CVE-2022-1292	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.17	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
openssl	CVE-2022-2068	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.19	openssl: the c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46
openssl	CVE-2022-2097	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.20	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl	CVE-2022-4304	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2022-4450	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0215	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.21	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl	CVE-2023-2650	中危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.23	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
perl-base	CVE-2020-16156	中危	5.26.1-6ubuntu0.3	5.26.1-6ubuntu0.6	perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl-base	CVE-2023-31484	中危	5.26.1-6ubuntu0.3	5.26.1-6ubuntu0.7	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
tar	CVE-2022-48303	中危	1.29b-2ubuntu0.1	1.29b-2ubuntu0.4	tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
zlib1g	CVE-2018-25032	中危	1:1.2.11.dfsg-0ubuntu2	1:1.2.11.dfsg-0ubuntu2.1	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
zlib1g	CVE-2022-37434	中危	1:1.2.11.dfsg-0ubuntu2	1:1.2.11.dfsg-0ubuntu2.2	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
libc6	CVE-2021-35942	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc6	CVE-2022-23218	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libc6	CVE-2022-23219	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
bash	CVE-2019-18276	低危	4.4.18-2ubuntu1.2	4.4.18-2ubuntu1.3	bash: when effective UID is not equal to its real UID the saved UID is not dropped 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18276 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-11-28 01:15 修改: 2023-11-07 03:06
libc-bin	CVE-2016-10228	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libc-bin	CVE-2019-25013	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libgcrypt20	CVE-2021-33560	低危	1.8.1-4ubuntu1.2	1.8.1-4ubuntu1.3	libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libgmp10	CVE-2021-43618	低危	2:6.1.2+dfsg-2	2:6.1.2+dfsg-2ubuntu0.1	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
libc-bin	CVE-2020-27618	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libgnutls30	CVE-2021-4209	低危	3.5.18-1ubuntu1.4	3.5.18-1ubuntu1.6	GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
libc-bin	CVE-2020-29562	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: assertion failure in iconv when converting invalid UCS4 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29562 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-04 07:15 修改: 2023-11-07 03:21
libc-bin	CVE-2020-6096	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libhogweed4	CVE-2018-16869	低危	3.4-1	3.4.1-0ubuntu0.18.04.1	nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libssl1.1	CVE-2021-23840	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.8	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0464	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0465	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0466	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libc-bin	CVE-2021-3326	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37
libc-bin	CVE-2021-35942	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Arbitrary read in wordexp() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36
libc-bin	CVE-2022-23218	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in svcunix_create via long pathnames 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37
libsystemd0	CVE-2020-13529	低危	237-3ubuntu10.42	237-3ubuntu10.49	systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libncurses5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libtinfo5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libtinfo5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncurses5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libncurses5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
libncurses5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libudev1	CVE-2020-13529	低危	237-3ubuntu10.42	237-3ubuntu10.49	systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libc-bin	CVE-2022-23219	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32
libncursesw5	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
login	CVE-2018-7169	低危	1:4.5-1ubuntu2	1:4.5-1ubuntu2.2	shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
libncursesw5	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-base	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-base	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-base	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncursesw5	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-bin	CVE-2019-17594	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-bin	CVE-2019-17595	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
ncurses-bin	CVE-2021-39537	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15
ncurses-bin	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncursesw5	CVE-2022-29458	低危	6.1-1ubuntu1.18.04	6.1-1ubuntu1.18.04.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
gpgv	CVE-2019-13050	低危	2.2.4-1ubuntu1.3	2.2.4-1ubuntu1.5	GnuPG: interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack which leads to persistent DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13050 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-06-29 17:15 修改: 2023-11-07 03:03
libc6	CVE-2016-10228	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: iconv program can hang when invoked with the -c option 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29
libnettle6	CVE-2018-16869	低危	3.4-1	3.4.1-0ubuntu0.18.04.1	nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libc6	CVE-2019-25013	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44
libc6	CVE-2020-27618	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06
libc6	CVE-2020-29562	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: assertion failure in iconv when converting invalid UCS4 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29562 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-12-04 07:15 修改: 2023-11-07 03:21
libpam-modules	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.2	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam-modules-bin	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.2	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam-runtime	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.2	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpam0g	CVE-2022-28321	低危	1.1.8-3.6ubuntu2.18.04.2	1.1.8-3.6ubuntu2.18.04.4	pam: authentication bypass for SSH logins 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28321 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2022-09-19 22:15 修改: 2023-08-08 14:21
libpcre3	CVE-2019-20838	低危	2:8.39-9	2:8.39-9ubuntu0.1	pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:05
libpcre3	CVE-2020-14155	低危	2:8.39-9	2:8.39-9ubuntu0.1	pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
libsepol1	CVE-2021-36084	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
openssl	CVE-2021-23840	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.8	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0464	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0465	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0466	低危	1.1.1-1ubuntu2.1~18.04.6	1.1.1-1ubuntu2.1~18.04.22	openssl: Certificate policy check not enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466 镜像层: sha256:6b2907e843113eccea3e3aabab6e4914bc3e2da72eea2c2cd6b3be1d59a35bd0 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
passwd	CVE-2018-7169	低危	1:4.5-1ubuntu2	1:4.5-1ubuntu2.2	shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
libsepol1	CVE-2021-36085	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.7-1	2.7-1ubuntu0.1	libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
perl-base	CVE-2020-10543	低危	5.26.1-6ubuntu0.3	5.26.1-6ubuntu0.5	perl: heap-based buffer overflow in regular expression compiler leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10543 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-10878	低危	5.26.1-6ubuntu0.3	5.26.1-6ubuntu0.5	perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10878 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-12723	低危	5.26.1-6ubuntu0.3	5.26.1-6ubuntu0.5	perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12723 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-06-05 15:15 修改: 2023-11-07 03:15
libsepol1	CVE-2021-36087	低危	2.7-1	2.7-1ubuntu0.1	libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
tar	CVE-2018-20482	低危	1.29b-2ubuntu0.1	1.29b-2ubuntu0.2	tar: Infinite read loop in sparse_dump_region function in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20482 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2018-12-26 18:29 修改: 2021-11-30 19:52
tar	CVE-2019-9923	低危	1.29b-2ubuntu0.1	1.29b-2ubuntu0.2	tar: null-pointer dereference in pax_decode_header in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
tar	CVE-2021-20193	低危	1.29b-2ubuntu0.1	1.29b-2ubuntu0.3	tar: Memory leak in read_header() in list.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15
libc6	CVE-2020-6096	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: signed comparison vulnerability in the ARMv7 memcpy function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6096 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2020-04-01 22:15 修改: 2023-11-07 03:24
libc6	CVE-2021-3326	低危	2.27-3ubuntu1.2	2.27-3ubuntu1.5	glibc: Assertion failure in ISO-2022-JP-3 gconv module related to combining characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3326 镜像层: sha256:80580270666742c625aecc56607a806ba343a66a8f5a7fd708e6c4e4c07a3e9b 发布日期: 2021-01-27 20:15 修改: 2023-11-07 03:37

Java (jar)

低危漏洞:0

中危漏洞:2

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
org.hibernate.validator:hibernate-validator	CVE-2020-10693	中危	6.1.1.Final	6.1.5.Final, 6.0.20.Final	hibernate-validator: Improper input validation in the interpolation of constraint error messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10693 镜像层: sha256:67056caa55867ecaa656ac8395b6033ca326714d8322c6eff4d02407902fb9c6 发布日期: 2020-05-06 14:15 修改: 2023-11-07 03:14
org.hibernate.validator:hibernate-validator	CVE-2023-1932	中危	6.1.1.Final	6.2.0.Final	hibernate-validator: rendering of invalid html with SafeHTML leads to HTML injection and XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1932 镜像层: sha256:67056caa55867ecaa656ac8395b6033ca326714d8322c6eff4d02407902fb9c6 发布日期: 2024-11-07 10:15 修改: 2024-11-08 19:01

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

org.hibernate.validator:hibernate-validator

CVE-2020-10693

中危

6.1.1.Final

6.1.5.Final, 6.0.20.Final

hibernate-validator: Improper input validation in the interpolation of constraint error messages