docker.io/kubeovn/kube-ovn:v1.11.5 linux/amd64

docker.io/kubeovn/kube-ovn:v1.11.5 - Trivy安全扫描结果扫描时间: 2024-11-18 09:55

全部漏洞信息

低危漏洞:103

中危漏洞:348

高危漏洞:82

严重漏洞:14

系统OS: ubuntu 22.04 扫描引擎: Trivy 扫描时间: 2024-11-18 09:55

docker.io/kubeovn/kube-ovn:v1.11.5 (ubuntu 22.04) (ubuntu)

低危漏洞:102

中危漏洞:242

高危漏洞:5

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2023-38545	高危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.14	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35
libc-bin	CVE-2023-4911	高危	2.35-0ubuntu3.1	2.35-0ubuntu3.4	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
libc6	CVE-2023-4911	高危	2.35-0ubuntu3.1	2.35-0ubuntu3.4	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
libcurl4	CVE-2023-38545	高危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.14	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35
libnghttp2-14	CVE-2023-44487	高危	1.43.0-1build3	1.43.0-1ubuntu0.1	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
bind9-dnsutils	CVE-2023-4408	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
bind9-dnsutils	CVE-2023-50387	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-dnsutils	CVE-2023-50868	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-dnsutils	CVE-2023-5517	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5517 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 14:09
bind9-dnsutils	CVE-2023-5679	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5679 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 13:58
bind9-dnsutils	CVE-2024-0760	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
bind9-dnsutils	CVE-2024-1737	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-dnsutils	CVE-2024-1975	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-dnsutils	CVE-2024-4076	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
bind9-host	CVE-2023-2828	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
bind9-host	CVE-2023-2911	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2911 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-03 19:09
bind9-host	CVE-2023-3341	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
bind9-host	CVE-2023-4236	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: an assertion failure may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4236 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-01 00:53
bind9-host	CVE-2023-4408	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
bind9-host	CVE-2023-50387	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-host	CVE-2023-50868	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-host	CVE-2023-5517	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5517 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 14:09
bind9-host	CVE-2023-5679	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5679 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 13:58
bind9-host	CVE-2024-0760	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
bind9-host	CVE-2024-1737	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-host	CVE-2024-1975	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-host	CVE-2024-4076	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
bind9-libs	CVE-2023-2828	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
bind9-libs	CVE-2023-2911	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2911 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-03 19:09
bind9-libs	CVE-2023-3341	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
bind9-libs	CVE-2023-4236	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: an assertion failure may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4236 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-01 00:53
bind9-libs	CVE-2023-4408	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
bind9-libs	CVE-2023-50387	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-libs	CVE-2023-50868	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
bind9-libs	CVE-2023-5517	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5517 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 14:09
bind9-libs	CVE-2023-5679	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5679 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 13:58
bind9-libs	CVE-2024-0760	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
bind9-libs	CVE-2024-1737	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-libs	CVE-2024-1975	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
bind9-libs	CVE-2024-4076	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
bsdutils	CVE-2024-28085	中危	1:2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
bash	CVE-2022-3715	中危	5.1-6ubuntu1	5.1-6ubuntu1.1	bash: a heap-buffer-overflow in valid_parameter_transform 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3715 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-01-05 15:15 修改: 2023-02-24 18:38
curl	CVE-2023-46218	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.15	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
curl	CVE-2024-2398	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.16	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
curl	CVE-2024-7264	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.17	curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
curl	CVE-2024-8096	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.18	curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
dnsutils	CVE-2023-2828	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
dnsutils	CVE-2023-2911	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2911 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-03 19:09
dnsutils	CVE-2023-3341	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
dnsutils	CVE-2023-4236	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: an assertion failure may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4236 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-01 00:53
dnsutils	CVE-2023-4408	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Parsing large DNS messages may cause excessive CPU load 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02
dnsutils	CVE-2023-50387	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
dnsutils	CVE-2023-50868	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
dnsutils	CVE-2023-5517	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5517 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 14:09
dnsutils	CVE-2023-5679	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.18-0ubuntu0.22.04.2	bind9: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5679 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-13 14:15 修改: 2024-10-22 13:58
dnsutils	CVE-2024-0760	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: A flood of DNS messages over TCP may make the server unstable 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0760 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:45
dnsutils	CVE-2024-1737	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
dnsutils	CVE-2024-1975	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind9: bind: SIG(0) can be used to exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46
dnsutils	CVE-2024-4076	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.28-0ubuntu0.22.04.1	bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4076 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:59
gcc-12-base	CVE-2023-4039	中危	12.1.0-2ubuntu1~22.04		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
inetutils-ping	CVE-2022-39028	中危	2:2.2-2	2:2.2-2ubuntu0.1	krb5-appl: NULL pointer dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39028 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2022-08-30 05:15 修改: 2023-09-27 20:10
inetutils-ping	CVE-2023-40303	中危	2:2.2-2	2:2.2-2ubuntu0.1	GNU inetutils before 2.5 may allow privilege escalation because of unc ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40303 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-14 05:15 修改: 2024-01-02 01:15
libatomic1	CVE-2023-4039	中危	12.1.0-2ubuntu1~22.04		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libblkid1	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
bind9-dnsutils	CVE-2023-2828	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: named's configured cache size limit can be significantly exceeded 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19
libc-bin	CVE-2023-5156	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: DoS due to memory leak in getaddrinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15
libc-bin	CVE-2024-2961	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.7	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33599	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33600	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33601	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-bin	CVE-2024-33602	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
bind9-dnsutils	CVE-2023-2911	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.2	bind: Exceeding the recursive-clients quota may cause named to terminate unexpectedly when stale-answer-client-timeout is set to 0 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2911 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-21 17:15 修改: 2023-07-03 19:09
libc6	CVE-2023-5156	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: DoS due to memory leak in getaddrinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15
libc6	CVE-2024-2961	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.7	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33599	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33600	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33601	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33602	中危	2.35-0ubuntu3.1	2.35-0ubuntu3.8	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libcap2	CVE-2023-2603	中危	1:2.44-1build3	1:2.44-1ubuntu0.22.04.1	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcap2-bin	CVE-2023-2603	中危	1:2.44-1build3	1:2.44-1ubuntu0.22.04.1	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcharon-extauth-plugins	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
libcharon-extauth-plugins	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
libcharon-extra-plugins	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
libcharon-extra-plugins	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
bind9-dnsutils	CVE-2023-3341	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: stack exhaustion in control channel code may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39
libcurl4	CVE-2023-46218	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.15	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl4	CVE-2024-2398	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.16	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl4	CVE-2024-7264	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.17	curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
libcurl4	CVE-2024-8096	中危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.18	curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
libexpat1	CVE-2023-52425	中危	2.4.7-1ubuntu0.2	2.4.7-1ubuntu0.3	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
libexpat1	CVE-2024-28757	中危	2.4.7-1ubuntu0.2	2.4.7-1ubuntu0.3	expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
libexpat1	CVE-2024-45490	中危	2.4.7-1ubuntu0.2	2.4.7-1ubuntu0.4	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
libexpat1	CVE-2024-45491	中危	2.4.7-1ubuntu0.2	2.4.7-1ubuntu0.4	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1	CVE-2024-45492	中危	2.4.7-1ubuntu0.2	2.4.7-1ubuntu0.4	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libgcc-s1	CVE-2023-4039	中危	12.1.0-2ubuntu1~22.04		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libgcrypt20	CVE-2024-2236	中危	1.9.4-3ubuntu3		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libgnutls30	CVE-2023-5981	中危	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.3	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
libgnutls30	CVE-2024-0553	中危	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
libgnutls30	CVE-2024-0567	中危	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.4	gnutls: rejects certificate chain with distributed trust 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0567 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-01-16 14:15 修改: 2024-09-16 13:15
libgnutls30	CVE-2024-28834	中危	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-21 14:15 修改: 2024-09-12 20:15
libgnutls30	CVE-2024-28835	中危	3.7.3-4ubuntu1.2	3.7.3-4ubuntu1.5	gnutls: potential crash during chain building/verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28835 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-21 06:15 修改: 2024-09-16 19:16
libgssapi-krb5-2	CVE-2023-36054	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.3	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libgssapi-krb5-2	CVE-2024-26462	中危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2	CVE-2024-37370	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libgssapi-krb5-2	CVE-2024-37371	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libjson-c5	CVE-2021-32292	中危	0.15-3~ubuntu1.22.04.1	0.15-3~ubuntu1.22.04.2	json-c: stack-buffer-overflow in parseit() in json_parse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32292 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-22 19:16 修改: 2023-09-29 22:15
libk5crypto3	CVE-2023-36054	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.3	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libk5crypto3	CVE-2024-26462	中危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-37370	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libk5crypto3	CVE-2024-37371	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5-3	CVE-2023-36054	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.3	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libkrb5-3	CVE-2024-26462	中危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-37370	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libkrb5-3	CVE-2024-37371	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5support0	CVE-2023-36054	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.3	krb5: Denial of service through freeing uninitialized pointer 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36054 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-07 19:15 修改: 2023-11-15 03:23
libkrb5support0	CVE-2024-26462	中危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-37370	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libkrb5support0	CVE-2024-37371	中危	1.19.2-2ubuntu0.1	1.19.2-2ubuntu0.4	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libmount1	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libncurses6	CVE-2023-29491	中危	6.3-2	6.3-2ubuntu0.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libncursesw6	CVE-2023-29491	中危	6.3-2	6.3-2ubuntu0.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
bind9-dnsutils	CVE-2023-4236	中危	1:9.18.12-0ubuntu0.22.04.1	1:9.18.12-0ubuntu0.22.04.3	bind: an assertion failure may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4236 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-09-20 13:15 修改: 2024-02-01 00:53
libnghttp2-14	CVE-2024-28182	中危	1.43.0-1build3	1.43.0-1ubuntu0.2	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libopenvswitch	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
libopenvswitch	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
libopenvswitch	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
libpam-modules	CVE-2024-22365	中危	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-modules-bin	CVE-2024-22365	中危	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam-runtime	CVE-2024-22365	中危	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpam0g	CVE-2024-22365	中危	1.4.0-11ubuntu2.3	1.4.0-11ubuntu2.4	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libperl5.34	CVE-2023-31484	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.2	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
libperl5.34	CVE-2023-47038	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
libpython3.10-minimal	CVE-2007-4559	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.2	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
libpython3.10-minimal	CVE-2023-24329	中危	3.10.6-1~22.04.2ubuntu1	3.10.6-1~22.04.2ubuntu1.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython3.10-minimal	CVE-2023-27043	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.10-minimal	CVE-2023-40217	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.10-minimal	CVE-2023-6597	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-minimal	CVE-2024-0397	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.10-minimal	CVE-2024-0450	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-minimal	CVE-2024-6232	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython3.10-minimal	CVE-2024-6923	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
libpython3.10-minimal	CVE-2024-8088	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
libpython3.10-stdlib	CVE-2007-4559	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.2	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
libpython3.10-stdlib	CVE-2023-24329	中危	3.10.6-1~22.04.2ubuntu1	3.10.6-1~22.04.2ubuntu1.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
libpython3.10-stdlib	CVE-2023-27043	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython3.10-stdlib	CVE-2023-40217	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
libpython3.10-stdlib	CVE-2023-6597	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-stdlib	CVE-2024-0397	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython3.10-stdlib	CVE-2024-0450	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
libpython3.10-stdlib	CVE-2024-6232	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython3.10-stdlib	CVE-2024-6923	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
libpython3.10-stdlib	CVE-2024-8088	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
libsmartcols1	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libsqlite3-0	CVE-2023-7104	中危	3.37.2-2ubuntu0.1	3.37.2-2ubuntu0.3	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
libssh-4	CVE-2023-1667	中危	0.9.6-2build1	0.9.6-2ubuntu0.22.04.1	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh-4	CVE-2023-2283	中危	0.9.6-2build1	0.9.6-2ubuntu0.22.04.1	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh-4	CVE-2023-48795	中危	0.9.6-2build1	0.9.6-2ubuntu0.22.04.2	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libssh-4	CVE-2023-6004	中危	0.9.6-2build1	0.9.6-2ubuntu0.22.04.3	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh-4	CVE-2023-6918	中危	0.9.6-2build1	0.9.6-2ubuntu0.22.04.3	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
libssl3	CVE-2022-40735	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.16	漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40735 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-11-14 23:15 修改: 2024-04-23 07:15
libssl3	CVE-2023-2650	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.10	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libssl3	CVE-2023-5363	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: Incorrect cipher key and IV length processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-10-25 18:17 修改: 2024-10-14 15:15
libssl3	CVE-2024-6119	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.18	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libstdc++6	CVE-2023-4039	中危	12.1.0-2ubuntu1~22.04		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libstrongswan	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
libstrongswan	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
libstrongswan-extra-plugins	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
libstrongswan-extra-plugins	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
libstrongswan-standard-plugins	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
libstrongswan-standard-plugins	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
libtinfo6	CVE-2023-29491	中危	6.3-2	6.3-2ubuntu0.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
libtss2-mu0	CVE-2024-29040	中危	3.2.0-1ubuntu1	3.2.0-1ubuntu1.1	tpm2-tss: arbitrary quote data may go undetected by Fapi_VerifyQuote 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29040 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-28 21:15 修改: 2024-07-01 12:37
libtss2-sys1	CVE-2024-29040	中危	3.2.0-1ubuntu1	3.2.0-1ubuntu1.1	tpm2-tss: arbitrary quote data may go undetected by Fapi_VerifyQuote 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29040 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-28 21:15 修改: 2024-07-01 12:37
libunbound-dev	CVE-2023-50387	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.4	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libunbound-dev	CVE-2023-50868	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.4	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libunbound-dev	CVE-2024-43167	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.7	unbound: NULL Pointer Dereference in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43167 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libunbound-dev	CVE-2024-43168	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.7	unbound: Heap-Buffer-Overflow in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43168 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libunbound-dev	CVE-2024-8508	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.8	unbound: Unbounded name compression could lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8508 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-10-03 17:15 修改: 2024-10-04 13:50
libunbound8	CVE-2023-50387	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.4	bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libunbound8	CVE-2023-50868	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.4	bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libunbound8	CVE-2024-43167	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.7	unbound: NULL Pointer Dereference in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43167 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libunbound8	CVE-2024-43168	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.7	unbound: Heap-Buffer-Overflow in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43168 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libunbound8	CVE-2024-8508	中危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.8	unbound: Unbounded name compression could lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8508 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-10-03 17:15 修改: 2024-10-04 13:50
libuuid1	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libuv1	CVE-2024-24806	中危	1.43.0-1	1.43.0-1ubuntu0.1	libuv: Improper Domain Lookup that potentially leads to SSRF attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24806 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-07 22:15 修改: 2024-07-18 01:15
libxml2	CVE-2024-25062	中危	2.9.13+dfsg-1ubuntu0.3	2.9.13+dfsg-1ubuntu0.4	libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
mount	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
ncurses-base	CVE-2023-29491	中危	6.3-2	6.3-2ubuntu0.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-29491	中危	6.3-2	6.3-2ubuntu0.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
openssl	CVE-2022-40735	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.16	漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40735 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2022-11-14 23:15 修改: 2024-04-23 07:15
openssl	CVE-2023-2650	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.10	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl	CVE-2023-5363	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: Incorrect cipher key and IV length processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5363 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-25 18:17 修改: 2024-10-14 15:15
openssl	CVE-2024-6119	中危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.18	openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
openvswitch-common	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
openvswitch-common	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
openvswitch-common	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
openvswitch-ipsec	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
openvswitch-ipsec	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
openvswitch-ipsec	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
openvswitch-pki	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
openvswitch-pki	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
openvswitch-pki	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
openvswitch-switch	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
openvswitch-switch	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
openvswitch-switch	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
perl	CVE-2023-31484	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.2	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl	CVE-2023-47038	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-base	CVE-2023-31484	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.2	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-base	CVE-2023-47038	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-modules-5.34	CVE-2023-31484	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.2	perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-modules-5.34	CVE-2023-47038	中危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
python3-openvswitch	CVE-2019-25076	中危	2.17.7-1		openvswitch: DoS via crafted packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25076 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2022-09-08 23:15 修改: 2022-09-13 20:41
python3-openvswitch	CVE-2023-3966	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3966 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2024-02-22 13:15 修改: 2024-03-23 03:15
python3-openvswitch	CVE-2023-5366	中危	2.17.7-1	2.17.9-0ubuntu0.22.04.1	openvswitch: openvswitch don't match packets on nd_target field 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5366 镜像层: sha256:55d3ea7da6473baef3170cf8e4d62b42dcd5d5627e3cb3518f2cf0c46518e11d 发布日期: 2023-10-06 18:15 修改: 2024-03-23 03:15
python3.10	CVE-2007-4559	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.2	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
python3.10	CVE-2023-24329	中危	3.10.6-1~22.04.2ubuntu1	3.10.6-1~22.04.2ubuntu1.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3.10	CVE-2023-27043	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.10	CVE-2023-40217	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.10	CVE-2023-6597	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10	CVE-2024-0397	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.10	CVE-2024-0450	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10	CVE-2024-6232	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3.10	CVE-2024-6923	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3.10	CVE-2024-8088	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
python3.10-minimal	CVE-2007-4559	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.2	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
python3.10-minimal	CVE-2023-24329	中危	3.10.6-1~22.04.2ubuntu1	3.10.6-1~22.04.2ubuntu1.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3.10-minimal	CVE-2023-27043	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3.10-minimal	CVE-2023-40217	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.3	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3.10-minimal	CVE-2023-6597	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10-minimal	CVE-2024-0397	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
python3.10-minimal	CVE-2024-0450	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.4	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3.10-minimal	CVE-2024-6232	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3.10-minimal	CVE-2024-6923	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3.10-minimal	CVE-2024-8088	中危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
strongswan	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
strongswan	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
strongswan-charon	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
strongswan-charon	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
strongswan-libcharon	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
strongswan-libcharon	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
strongswan-pki	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
strongswan-pki	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
strongswan-starter	CVE-2022-4967	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.3	strongSwan versions 5.9.2 through 5.9.5 are affected by authorization ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4967 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-14 11:57 修改: 2024-06-14 13:15
strongswan-starter	CVE-2023-41913	中危	5.9.5-2ubuntu2.1	5.9.5-2ubuntu2.2	strongSwan before 5.9.12 has a buffer overflow and possible unauthenti ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-41913 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-07 05:15 修改: 2024-06-11 04:15
tar	CVE-2023-39804	中危	1.34+dfsg-1ubuntu0.1.22.04.1	1.34+dfsg-1ubuntu0.1.22.04.2	tar: Incorrectly handled extension attributes in PAX archives can lead to a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35
util-linux	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
uuid-runtime	CVE-2024-28085	中危	2.37.2-4ubuntu3	2.37.2-4ubuntu3.3	util-linux: CVE-2024-28085: wall: escape sequence injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28085 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-03-27 19:15 修改: 2024-08-26 21:35
libc6	CVE-2023-4813	低危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libatomic1	CVE-2022-27943	低危	12.1.0-2ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
libkrb5-3	CVE-2024-26458	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26461	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libunbound8	CVE-2024-33655	低危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.5	unbound: DNSBomb vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33655 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-06 17:15 修改: 2024-08-22 19:35
libpython3.10-minimal	CVE-2024-4032	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.10-minimal	CVE-2024-7592	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: Uncontrolled CPU resource consumption when in http.cookies module 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libcap2	CVE-2023-2602	低危	1:2.44-1build3	1:2.44-1ubuntu0.22.04.1	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
libzstd1	CVE-2022-4899	低危	1.4.8+dfsg-3build1		zstd: mysql: buffer overrun in util.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-03-31 20:15 修改: 2023-11-07 03:59
login	CVE-2023-29383	低危	1:4.8.1-2ubuntu2.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login	CVE-2023-4641	低危	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libc-bin	CVE-2016-20013	低危	2.35-0ubuntu3.1		漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libgcc-s1	CVE-2022-27943	低危	12.1.0-2ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
ncurses-base	CVE-2022-29458	低危	6.3-2	6.3-2ubuntu0.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-base	CVE-2023-45918	低危	6.3-2		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
ncurses-base	CVE-2023-50495	低危	6.3-2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libcap2-bin	CVE-2023-2602	低危	1:2.44-1build3	1:2.44-1ubuntu0.22.04.1	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
ncurses-bin	CVE-2022-29458	低危	6.3-2	6.3-2ubuntu0.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-bin	CVE-2023-45918	低危	6.3-2		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
ncurses-bin	CVE-2023-50495	低危	6.3-2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libkrb5support0	CVE-2024-26458	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-26461	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libldap-2.5-0	CVE-2023-2953	低危	2.5.14+dfsg-0ubuntu0.22.04.2	2.5.16+dfsg-0ubuntu0.22.04.2	openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libc-bin	CVE-2023-4806	低危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
openssl	CVE-2023-1255	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.10	openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-04-20 17:15 修改: 2023-09-08 17:15
openssl	CVE-2023-2975	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2975 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-07-14 12:15 修改: 2024-10-14 15:15
openssl	CVE-2023-3446	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl	CVE-2023-3817	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl	CVE-2023-5678	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl	CVE-2023-6129	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-01-09 17:15 修改: 2024-10-14 15:15
openssl	CVE-2023-6237	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: Excessive time spent checking invalid RSA public keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-04-25 07:15 修改: 2024-11-01 15:35
openssl	CVE-2024-0727	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl	CVE-2024-2511	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl	CVE-2024-41996	低危	3.0.2-0ubuntu1.9		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
openssl	CVE-2024-4603	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
openssl	CVE-2024-4741	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
openssl	CVE-2024-5535	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libc-bin	CVE-2023-4813	低危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libncurses6	CVE-2022-29458	低危	6.3-2	6.3-2ubuntu0.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libpython3.10-stdlib	CVE-2024-4032	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libpython3.10-stdlib	CVE-2024-7592	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: Uncontrolled CPU resource consumption when in http.cookies module 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libncurses6	CVE-2023-45918	低危	6.3-2		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libncurses6	CVE-2023-50495	低危	6.3-2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libsqlite3-0	CVE-2022-46908	低危	3.37.2-2ubuntu0.1	3.37.2-2ubuntu0.3	sqlite: safe mode authorizer callback allows disallowed UDFs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46908 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2022-12-12 06:15 修改: 2023-11-24 14:15
curl	CVE-2023-28322	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.11	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libncursesw6	CVE-2022-29458	低危	6.3-2	6.3-2ubuntu0.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libncursesw6	CVE-2023-45918	低危	6.3-2		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libncursesw6	CVE-2023-50495	低危	6.3-2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
curl	CVE-2023-38546	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.14	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
passwd	CVE-2023-29383	低危	1:4.8.1-2ubuntu2.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd	CVE-2023-4641	低危	1:4.8.1-2ubuntu2.1	1:4.8.1-2ubuntu2.2	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
gcc-12-base	CVE-2022-27943	低危	12.1.0-2ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
gpgv	CVE-2022-3219	低危	2.2.27-3ubuntu2.1		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
perl	CVE-2022-48522	低危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: stack-based crash in S_find_uninit_var() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
curl	CVE-2024-9681	低危	7.81.0-1ubuntu1.10		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-11-06 08:15 修改: 2024-11-06 18:17
coreutils	CVE-2016-2781	低危	8.32-4.1ubuntu1		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
perl-base	CVE-2022-48522	低危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: stack-based crash in S_find_uninit_var() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
libssl3	CVE-2023-1255	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.10	openssl: Input buffer over-read in AES-XTS implementation on 64 bit ARM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1255 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-04-20 17:15 修改: 2023-09-08 17:15
libssl3	CVE-2023-2975	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2975 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-07-14 12:15 修改: 2024-10-14 15:15
perl-modules-5.34	CVE-2022-48522	低危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: stack-based crash in S_find_uninit_var() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
procps	CVE-2023-4016	低危	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libssl3	CVE-2023-3446	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libssl3	CVE-2023-3817	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.12	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libssl3	CVE-2023-5678	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libssl3	CVE-2023-6129	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-01-09 17:15 修改: 2024-10-14 15:15
libssl3	CVE-2023-6237	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: Excessive time spent checking invalid RSA public keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6237 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-04-25 07:15 修改: 2024-11-01 15:35
libssl3	CVE-2024-0727	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.14	openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
libssl3	CVE-2024-2511	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
libssl3	CVE-2024-41996	低危	3.0.2-0ubuntu1.9		openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libssl3	CVE-2024-4603	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Excessive time spent checking DSA keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libssl3	CVE-2024-4741	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl3	CVE-2024-5535	低危	3.0.2-0ubuntu1.9	3.0.2-0ubuntu1.17	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
curl	CVE-2023-28321	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.11	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libstdc++6	CVE-2022-27943	低危	12.1.0-2ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45
python3.10	CVE-2024-4032	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.10	CVE-2024-7592	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: Uncontrolled CPU resource consumption when in http.cookies module 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libgssapi-krb5-2	CVE-2024-26458	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2	CVE-2024-26461	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libcurl4	CVE-2023-28321	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.11	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libpcre2-8-0	CVE-2022-41409	低危	10.39-3ubuntu0.1		pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libpcre3	CVE-2017-11164	低危	2:8.39-13ubuntu0.22.04.1		pcre: OP_KETRMAX feature in the match function in pcre_exec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libcurl4	CVE-2023-28322	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.11	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libsystemd0	CVE-2023-7008	低危	249.11-0ubuntu3.9		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libcurl4	CVE-2023-38546	低危	7.81.0-1ubuntu1.10	7.81.0-1ubuntu1.14	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libtinfo6	CVE-2022-29458	低危	6.3-2	6.3-2ubuntu0.1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libtinfo6	CVE-2023-45918	低危	6.3-2		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
python3.10-minimal	CVE-2024-4032	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.5	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3.10-minimal	CVE-2024-7592	低危	3.10.6-1~22.04.2ubuntu1	3.10.12-1~22.04.6	cpython: python: Uncontrolled CPU resource consumption when in http.cookies module 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libtinfo6	CVE-2023-50495	低危	6.3-2		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libperl5.34	CVE-2022-48522	低危	5.34.0-3ubuntu1.1	5.34.0-3ubuntu1.3	perl: stack-based crash in S_find_uninit_var() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48522 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-08-22 19:16 修改: 2023-09-15 14:15
libtss2-mu0	CVE-2023-22745	低危	3.2.0-1ubuntu1	3.2.0-1ubuntu1.1	tpm2-tss: Buffer Overlow in TSS2_RC_Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22745 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-01-19 23:15 修改: 2023-01-26 20:25
libprocps8	CVE-2023-4016	低危	2:3.3.17-6ubuntu2	2:3.3.17-6ubuntu2.1	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libtss2-sys1	CVE-2023-22745	低危	3.2.0-1ubuntu1	3.2.0-1ubuntu1.1	tpm2-tss: Buffer Overlow in TSS2_RC_Decode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22745 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-01-19 23:15 修改: 2023-01-26 20:25
libudev1	CVE-2023-7008	低危	249.11-0ubuntu3.9		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libcurl4	CVE-2024-9681	低危	7.81.0-1ubuntu1.10		curl: HSTS subdomain overwrites parent cache entry 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-11-06 08:15 修改: 2024-11-06 18:17
libdbus-1-3	CVE-2023-34969	低危	1.12.20-2ubuntu4.1		dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36
libk5crypto3	CVE-2024-26458	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26461	低危	1.19.2-2ubuntu0.1		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc6	CVE-2016-20013	低危	2.35-0ubuntu3.1		漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
udev	CVE-2023-7008	低危	249.11-0ubuntu3.9		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libunbound-dev	CVE-2024-33655	低危	1.13.1-1ubuntu5.3	1.13.1-1ubuntu5.5	unbound: DNSBomb vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33655 镜像层: sha256:1c0366302c741a2d92f01a44ce0ff4bbc3b7f82a000493e1744fedf33bcd281e 发布日期: 2024-06-06 17:15 修改: 2024-08-22 19:35
libc6	CVE-2023-4806	低危	2.35-0ubuntu3.1	2.35-0ubuntu3.5	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:b8a36d10656ac19ddb96ef3107f76820663717708fc37ce929925c36d1b1d157 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15

kube-ovn/kube-ovn-cmd (gobinary)

低危漏洞:1

中危漏洞:24

高危漏洞:14

严重漏洞:1

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2024-24790	严重	1.19.9	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc	CVE-2023-47108	高危	v0.35.0	0.46.0	opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47108 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-11-10 19:15 修改: 2023-11-20 19:34
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp	CVE-2023-45142	高危	v0.35.0	0.44.0	opentelemetry: DoS vulnerability in otelhttp 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45142 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-12 17:15 修改: 2024-02-19 03:15
golang.org/x/net	CVE-2023-39325	高危	v0.7.0	0.17.0	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
google.golang.org/grpc	GHSA-m425-mq94-257g	高危	v1.51.0	1.56.3, 1.57.1, 1.58.3	gRPC-Go HTTP/2 Rapid Reset vulnerability 漏洞详情: https://github.com/advisories/GHSA-m425-mq94-257g 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
k8s.io/kubernetes	CVE-2023-3676	高危	v1.26.1	1.28.1, 1.27.5, 1.26.8, 1.25.13, 1.24.17	kubernetes: Insufficient input sanitization on Windows nodes leads to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3676 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-31 21:15 修改: 2023-11-30 22:15
k8s.io/kubernetes	CVE-2023-3955	高危	v1.26.1	1.28.1, 1.27.5, 1.26.8, 1.25.13, 1.24.17	kubernetes: Insufficient input sanitization on Windows nodes leads to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3955 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-31 21:15 修改: 2023-12-21 22:15
k8s.io/kubernetes	CVE-2023-5528	高危	v1.26.1	1.28.4, 1.27.8, 1.26.11, 1.25.16	kubernetes: Insufficient input sanitization in in-tree storage plugin leads to privilege escalation on Windows nodes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5528 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-11-14 21:15 修改: 2024-09-06 15:15
github.com/osrg/gobgp/v3	CVE-2023-46565	高危	v3.10.0		gobgp: buffer overflow via handlingError() function in pkg/server/fsm.go 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46565 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-04-29 20:15 修改: 2024-09-06 19:35
stdlib	CVE-2023-29403	高危	1.19.9	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.19.9	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.19.9	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.19.9	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.19.9	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.19.9	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
k8s.io/kubernetes	CVE-2023-2728	中危	v1.26.1	1.27.3, 1.26.6, 1.25.11, 1.24.15	kube-apiserver: Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2728 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-07-03 21:15 修改: 2023-08-03 15:15
k8s.io/kubernetes	CVE-2024-5321	中危	v1.26.1	1.27.16, 1.28.12, 1.29.7, 1.30.3	kubelet: Incorrect permissions on Windows containers logs 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5321 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-07-18 19:15 修改: 2024-07-19 13:01
google.golang.org/grpc	CVE-2023-44487	中危	v1.51.0	1.58.3, 1.57.1, 1.56.3	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
google.golang.org/protobuf	CVE-2024-24786	中危	v1.28.1	1.33.0	golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-11-07 17:35
golang.org/x/net	CVE-2023-44487	中危	v0.7.0	0.17.0	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
golang.org/x/net	CVE-2023-45288	中危	v0.7.0	0.23.0	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
golang.org/x/net	CVE-2023-3978	中危	v0.7.0	0.13.0	golang.org/x/net/html: Cross site scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3978 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:20
k8s.io/kubernetes	CVE-2023-2431	中危	v1.26.1	1.24.14, 1.25.10, 1.26.5, 1.27.2	kubernetes: Bypass of seccomp profile enforcement 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2431 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-06-16 08:15 修改: 2023-07-01 06:15
k8s.io/kubernetes	CVE-2023-2727	中危	v1.26.1	1.27.3, 1.26.6, 1.25.11, 1.24.15	kube-apiserver: Bypassing policies imposed by the ImagePolicyWebhook admission plugin 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2727 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-07-03 21:15 修改: 2023-08-03 15:15
stdlib	CVE-2023-29406	中危	1.19.9	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.19.9	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.19.9	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.19.9	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.19.9	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.19.9	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.19.9	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.19.9	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.19.9	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.19.9	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.19.9	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.19.9	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.19.9	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.19.9	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.19.9	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35
k8s.io/kubernetes	CVE-2024-3177	低危	v1.26.1	1.27.13, 1.29.4, 1.28.9	kubernetes: kube-apiserver: bypassing mountable secrets policy imposed by the ServiceAccount admission plugin 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3177 镜像层: sha256:234cd13d135bc0421edb752d08eb585d611f0d6728f87fd76c09902d094a7329 发布日期: 2024-04-22 23:15 修改: 2024-09-10 21:15

kube-ovn/kube-ovn-webhook (gobinary)

低危漏洞:0

中危漏洞:19

高危漏洞:7

严重漏洞:1

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2024-24790	严重	1.19.9	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
golang.org/x/net	CVE-2023-39325	高危	v0.7.0	0.17.0	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-29403	高危	1.19.9	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.19.9	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.19.9	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.19.9	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.19.9	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.19.9	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
google.golang.org/protobuf	CVE-2024-24786	中危	v1.28.1	1.33.0	golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24786 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-11-07 17:35
golang.org/x/net	CVE-2023-3978	中危	v0.7.0	0.13.0	golang.org/x/net/html: Cross site scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3978 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-08-02 20:15 修改: 2023-11-07 04:20
golang.org/x/net	CVE-2023-44487	中危	v0.7.0	0.17.0	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
golang.org/x/net	CVE-2023-45288	中危	v0.7.0	0.23.0	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2023-29406	中危	1.19.9	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.19.9	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.19.9	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.19.9	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.19.9	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.19.9	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.19.9	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.19.9	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.19.9	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.19.9	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.19.9	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.19.9	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.19.9	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.19.9	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.19.9	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:2420f9f97806c3b74b3623164e1e8dcb482a246dd127e5bd7b9482c10836ffff 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35

loopback (gobinary)

低危漏洞:0

中危漏洞:16

高危漏洞:15

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2023-24538	严重	1.18.10	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.18.10	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
stdlib	CVE-2022-41722	高危	1.18.10	1.19.6, 1.20.1	golang: path/filepath: path-filepath filepath.Clean path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41723	高危	1.18.10	1.19.6, 1.20.1	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41724	高危	1.18.10	1.19.6, 1.20.1	golang: crypto/tls: large handshake records may cause panics 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41725	高危	1.18.10	1.19.6, 1.20.1	golang: net/http, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24534	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.18.10	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24539	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29400	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-29403	高危	1.18.10	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.18.10	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.18.10	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.18.10	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.18.10	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.18.10	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2023-24532	中危	1.18.10	1.19.7, 1.20.2	golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-03-08 20:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29406	中危	1.18.10	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.18.10	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.18.10	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.18.10	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.18.10	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.18.10	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.18.10	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.18.10	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.18.10	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.18.10	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.18.10	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.18.10	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.18.10	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35

macvlan (gobinary)

低危漏洞:0

中危漏洞:16

高危漏洞:15

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2023-24538	严重	1.18.10	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.18.10	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
stdlib	CVE-2022-41722	高危	1.18.10	1.19.6, 1.20.1	golang: path/filepath: path-filepath filepath.Clean path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41723	高危	1.18.10	1.19.6, 1.20.1	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41724	高危	1.18.10	1.19.6, 1.20.1	golang: crypto/tls: large handshake records may cause panics 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41725	高危	1.18.10	1.19.6, 1.20.1	golang: net/http, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24534	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.18.10	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24539	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29400	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-29403	高危	1.18.10	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.18.10	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.18.10	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.18.10	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.18.10	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.18.10	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2023-24532	中危	1.18.10	1.19.7, 1.20.2	golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-03-08 20:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29406	中危	1.18.10	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.18.10	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.18.10	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.18.10	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.18.10	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.18.10	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.18.10	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.18.10	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.18.10	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.18.10	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.18.10	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.18.10	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.18.10	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35

portmap (gobinary)

低危漏洞:0

中危漏洞:16

高危漏洞:15

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2023-24538	严重	1.18.10	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.18.10	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
stdlib	CVE-2022-41722	高危	1.18.10	1.19.6, 1.20.1	golang: path/filepath: path-filepath filepath.Clean path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41722 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-07 03:52
stdlib	CVE-2022-41723	高危	1.18.10	1.19.6, 1.20.1	golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41723 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41724	高危	1.18.10	1.19.6, 1.20.1	golang: crypto/tls: large handshake records may cause panics 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41724 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2022-41725	高危	1.18.10	1.19.6, 1.20.1	golang: net/http, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41725 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-02-28 18:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24534	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.18.10	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.18.10	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24539	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29400	高危	1.18.10	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-29403	高危	1.18.10	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.18.10	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.18.10	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.18.10	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.18.10	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.18.10	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2023-24532	中危	1.18.10	1.19.7, 1.20.2	golang: crypto/internal/nistec: specific unreduced P-256 scalars produce incorrect results 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24532 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-03-08 20:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29406	中危	1.18.10	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.18.10	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.18.10	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.18.10	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.18.10	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.18.10	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.18.10	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.18.10	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.18.10	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.18.10	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.18.10	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.18.10	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.18.10	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.18.10	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:b743e7467d12209d5c4844fc1e0e94198f6a790bceff7fdd1478e868d3584c99 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35

usr/bin/kubectl (gobinary)

低危漏洞:0

中危漏洞:15

高危漏洞:11

严重漏洞:3

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
stdlib	CVE-2023-24538	严重	1.19.7	1.19.8, 1.20.3	golang: html/template: backticks not treated as string delimiters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24538 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24540	严重	1.19.7	1.19.9, 1.20.4	golang: html/template: improper handling of JavaScript whitespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24540 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2024-24790	严重	1.19.7	1.21.11, 1.22.4	golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24790 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-06-05 16:15 修改: 2024-09-03 18:35
stdlib	CVE-2023-24534	高危	1.19.7	1.19.8, 1.20.3	golang: net/http, net/textproto: denial of service from excessive memory allocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24534 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24536	高危	1.19.7	1.19.8, 1.20.3	golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24536 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24537	高危	1.19.7	1.19.8, 1.20.3	golang: go/parser: Infinite loop in parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24537 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-04-06 16:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-24539	高危	1.19.7	1.19.9, 1.20.4	golang: html/template: improper sanitization of CSS values 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24539 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:08
stdlib	CVE-2023-29400	高危	1.19.7	1.19.9, 1.20.4	golang: html/template: improper handling of empty HTML attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29400 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-05-11 16:15 修改: 2023-11-07 04:11
stdlib	CVE-2023-29403	高危	1.19.7	1.19.10, 1.20.5	golang: runtime: unexpected behavior of setuid/setgid binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29403 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-06-08 21:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39325	高危	1.19.7	1.20.10, 1.21.3	golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39325 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-10-11 22:15 修改: 2024-04-28 04:15
stdlib	CVE-2023-45283	高危	1.19.7	1.20.11, 1.21.4, 1.20.12, 1.21.5	The filepath package does not recognize paths with a \??\ prefix as sp ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45283 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-11-09 17:15 修改: 2023-12-14 10:15
stdlib	CVE-2023-45287	高危	1.19.7	1.20.0	golang: crypto/tls: Timing Side Channel attack in RSA based TLS key exchanges. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45287 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-12-05 17:15 修改: 2024-01-12 14:15
stdlib	CVE-2023-45288	高危	1.19.7	1.21.9, 1.22.2	golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45288 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-04-04 21:15 修改: 2024-08-26 21:35
stdlib	CVE-2024-34156	高危	1.19.7	1.22.7, 1.23.1	encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34156 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-09-06 21:15 修改: 2024-09-09 15:35
stdlib	CVE-2023-29406	中危	1.19.7	1.19.11, 1.20.6	golang: net/http: insufficient sanitization of Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29406 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-07-11 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-29409	中危	1.19.7	1.19.12, 1.20.7, 1.21.0-rc.4	golang: crypto/tls: slow verification of certificate chains containing large RSA keys 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29409 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-08-02 20:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39318	中危	1.19.7	1.20.8, 1.21.1	golang: html/template: improper handling of HTML-like comments within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39318 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39319	中危	1.19.7	1.20.8, 1.21.1	golang: html/template: improper handling of special tags within script contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39319 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-09-08 17:15 修改: 2023-11-25 11:15
stdlib	CVE-2023-39326	中危	1.19.7	1.20.12, 1.21.5	golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39326 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-12-06 17:15 修改: 2024-01-20 04:15
stdlib	CVE-2023-45284	中危	1.19.7	1.20.11, 1.21.4	On Windows, The IsLocal function does not correctly detect reserved de ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45284 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2023-11-09 17:15 修改: 2024-09-03 19:35
stdlib	CVE-2023-45289	中危	1.19.7	1.21.8, 1.22.1	golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45289 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-03-05 23:15 修改: 2024-11-04 19:35
stdlib	CVE-2023-45290	中危	1.19.7	1.21.8, 1.22.1	golang: net/http: golang: mime/multipart: golang: net/textproto: memory exhaustion in Request.ParseMultipartForm 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45290 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-03-05 23:15 修改: 2024-11-07 11:35
stdlib	CVE-2024-24783	中危	1.19.7	1.21.8, 1.22.1	golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24783 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-03-05 23:15 修改: 2024-11-05 17:35
stdlib	CVE-2024-24784	中危	1.19.7	1.21.8, 1.22.1	golang: net/mail: comments in display names are incorrectly handled 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24784 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-03-05 23:15 修改: 2024-08-05 21:35
stdlib	CVE-2024-24785	中危	1.19.7	1.21.8, 1.22.1	golang: html/template: errors returned from MarshalJSON methods may break template escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24785 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-03-05 23:15 修改: 2024-05-01 17:15
stdlib	CVE-2024-24789	中危	1.19.7	1.21.11, 1.22.4	golang: archive/zip: Incorrect handling of certain ZIP files 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24789 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-06-05 16:15 修改: 2024-07-03 01:48
stdlib	CVE-2024-24791	中危	1.19.7	1.21.12, 1.22.5	net/http: Denial of service due to improper 100-continue handling in net/http 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-24791 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-07-02 22:15 修改: 2024-07-08 14:17
stdlib	CVE-2024-34155	中危	1.19.7	1.22.7, 1.23.1	go/parser: golang: Calling any of the Parse functions containing deeply nested literals can cause a panic/stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34155 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-09-06 21:15 修改: 2024-11-04 17:35
stdlib	CVE-2024-34158	中危	1.19.7	1.22.7, 1.23.1	go/build/constraint: golang: Calling Parse on a "// +build" build tag line with deeply nested expressions can cause a panic due to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34158 镜像层: sha256:6382b86b8b9a619cd1751f92b20924b39b88fbcb8491e4569dfbb94bd3a3a2fa 发布日期: 2024-09-06 21:15 修改: 2024-09-09 14:35