docker.io/kubeflow/training-operator:v1-9e52eb7 linux/amd64

docker.io/kubeflow/training-operator:v1-9e52eb7 - Trivy安全扫描结果扫描时间: 2025-02-04 15:55

全部漏洞信息

低危漏洞:0

中危漏洞:2

高危漏洞:2

严重漏洞:0

系统OS: debian 12.6 扫描引擎: Trivy 扫描时间: 2025-02-04 15:55

docker.io/kubeflow/training-operator:v1-9e52eb7 (debian 12.6) (debian)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

manager (gobinary)

低危漏洞:0

中危漏洞:2

高危漏洞:2

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
golang.org/x/net	CVE-2024-45338	高危	v0.23.0	0.33.0	golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45338 镜像层: sha256:a266b2731644b51cfb9c88269ba33062aa3b11bb302ff4f44b65ce6c1e06eedb 发布日期: 2024-12-18 21:15 修改: 2024-12-31 20:16
stdlib	CVE-2024-34156	高危	1.22.5	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:a266b2731644b51cfb9c88269ba33062aa3b11bb302ff4f44b65ce6c1e06eedb 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2024-34155	中危	1.22.5	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:a266b2731644b51cfb9c88269ba33062aa3b11bb302ff4f44b65ce6c1e06eedb 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.22.5	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:a266b2731644b51cfb9c88269ba33062aa3b11bb302ff4f44b65ce6c1e06eedb 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35