docker.io/koishijs/koishi:v1.15.0 linux/amd64

docker.io/koishijs/koishi:v1.15.0 - Trivy安全扫描结果扫描时间: 2024-11-15 15:26

全部漏洞信息

低危漏洞:2

中危漏洞:5

高危漏洞:3

严重漏洞:3

系统OS: alpine 3.20.2 扫描引擎: Trivy 扫描时间: 2024-11-15 15:26

docker.io/koishijs/koishi:v1.15.0 (alpine 3.20.2) (alpine)

低危漏洞:2

中危漏洞:5

高危漏洞:3

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
libexpat	CVE-2024-45491	严重	2.6.2-r0	2.6.3-r0	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat	CVE-2024-45492	严重	2.6.2-r0	2.6.3-r0	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
mbedtls	CVE-2024-45159	严重	3.6.0-r0	3.6.1-r0	漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45159 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-09-05 19:15 修改: 2024-09-19 18:26
gdk-pixbuf	CVE-2022-48622	高危	2.42.11-r1	2.42.12-r0	gnome: heap memory corruption on gdk-pixbuf 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48622 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-01-26 09:15 修改: 2024-08-26 20:35
libexpat	CVE-2024-45490	高危	2.6.2-r0	2.6.3-r0	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
cups-libs	CVE-2024-47175	高危	2.4.9-r0	2.4.9-r1	cups: libppd: remote command injection via attacker controlled data in PPD file 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46
libexpat	CVE-2024-50602	中危	2.6.2-r0	2.6.4-r0	libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libssl3	CVE-2024-6119	中危	3.3.1-r3	3.3.2-r0	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:78561cef0761903dd2f7d09856150a6d4fb48967a8f113f3e33d79effbf59a07 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libcrypto3	CVE-2024-6119	中危	3.3.1-r3	3.3.2-r0	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:78561cef0761903dd2f7d09856150a6d4fb48967a8f113f3e33d79effbf59a07 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
mbedtls	CVE-2024-45157	中危	3.6.0-r0	3.6.1-r0	An issue was discovered in Mbed TLS before 2.28.9 and 3.x before 3.6.1 ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45157 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-09-05 19:15 修改: 2024-09-12 16:29
orc	CVE-2024-40897	中危	0.4.37-r0	0.4.39-r0	orc: Stack-based buffer overflow vulnerability in ORC 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-40897 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-07-26 06:15 修改: 2024-08-27 13:52
libssl3	CVE-2024-9143	低危	3.3.1-r3	3.3.2-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:78561cef0761903dd2f7d09856150a6d4fb48967a8f113f3e33d79effbf59a07 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libcrypto3	CVE-2024-9143	低危	3.3.1-r3	3.3.2-r1	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:78561cef0761903dd2f7d09856150a6d4fb48967a8f113f3e33d79effbf59a07 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
mbedtls	CVE-2024-49195	未知	3.6.0-r0	3.6.2-r0	Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkw ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-49195 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-10-15 20:15 修改: 2024-10-17 18:35
mbedtls	CVE-2024-45158	未知	3.6.0-r0	3.6.1-r0	漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45158 镜像层: sha256:377987ac7e53ac50f88b315e5de88754614fcb5791b8f8336cf81fe2135a6bb9 发布日期: 2024-09-05 19:15 修改: 2024-09-06 19:35

Node.js (node-pkg)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息