docker.io/library/flink:1.18-scala_2.12-java17 linux/amd64

docker.io/library/flink:1.18-scala_2.12-java17 - Trivy安全扫描结果扫描时间: 2026-06-16 23:45

全部漏洞信息

低危漏洞:97

中危漏洞:154

高危漏洞:15

严重漏洞:0

系统OS: ubuntu 22.04 扫描引擎: Trivy 扫描时间: 2026-06-16 23:45

docker.io/library/flink:1.18-scala_2.12-java17 (ubuntu 22.04) (ubuntu)

低危漏洞:97

中危漏洞:150

高危漏洞:13

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
dirmngr	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gnupg	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gnupg-l10n	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gnupg-utils	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-agent	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-wks-client	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpg-wks-server	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgconf	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgsm	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
gpgv	CVE-2025-68973	高危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.5	GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
libssl3	CVE-2026-45447	高危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Heap Use-After-Free in OpenSSL PKCS7_verify() 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
openssl	CVE-2026-45447	高危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Heap Use-After-Free in OpenSSL PKCS7_verify() 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 15:16
gnupg-l10n	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2026-3783	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
gnupg-utils	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2026-5545	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
gpg	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2026-6253	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
gpg-agent	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2026-6429	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Credential leak via reused proxy connection during HTTP redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
gpg-wks-client	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2026-7168	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
gpg-wks-server	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
bsdutils	CVE-2026-27456	中危	1:2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
gpgconf	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
dirmngr	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
gpgsm	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
curl	CVE-2025-14017	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
gpgv	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libblkid1	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libc-bin	CVE-2025-0395	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.9	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
libc-bin	CVE-2025-15281	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
libc-bin	CVE-2025-4802	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.10	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
libc-bin	CVE-2025-8058	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.11	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
libc-bin	CVE-2026-0861	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
libc-bin	CVE-2026-0915	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
libc-bin	CVE-2026-4046	中危	2.35-0ubuntu3.8		glibc: glibc: Denial of Service via iconv() function with specific character sets 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
libc-bin	CVE-2026-5435	中危	2.35-0ubuntu3.8		glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc-bin	CVE-2026-6238	中危	2.35-0ubuntu3.8		glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libc6	CVE-2025-0395	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.9	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
libc6	CVE-2025-15281	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
libc6	CVE-2025-4802	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.10	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
libc6	CVE-2025-8058	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.11	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
libc6	CVE-2026-0861	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
libc6	CVE-2026-0915	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
libc6	CVE-2026-4046	中危	2.35-0ubuntu3.8		glibc: glibc: Denial of Service via iconv() function with specific character sets 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
libc6	CVE-2026-5435	中危	2.35-0ubuntu3.8		glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
libc6	CVE-2026-6238	中危	2.35-0ubuntu3.8		glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
libcap2	CVE-2025-1390	中危	1:2.44-1ubuntu0.22.04.1	1:2.44-1ubuntu0.22.04.2	libcap: pam_cap: Fix potential configuration parsing error 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1390 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-02-18 03:15 修改: 2026-04-15 00:35
libcap2	CVE-2026-4878	中危	1:2.44-1ubuntu0.22.04.1	1:2.44-1ubuntu0.22.04.3	libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-09 16:16 修改: 2026-06-11 10:16
libcurl4	CVE-2025-14017	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-27 21:29
libcurl4	CVE-2026-1965	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
libcurl4	CVE-2026-3783	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:16 修改: 2026-03-12 14:10
libcurl4	CVE-2026-5545	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:31
libcurl4	CVE-2026-6253	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:40
libcurl4	CVE-2026-6429	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Credential leak via reused proxy connection during HTTP redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:18
libcurl4	CVE-2026-7168	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:12
libexpat1	CVE-2024-8176	中危	2.4.7-1ubuntu0.5	2.4.7-1ubuntu0.6	libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-14 09:15 修改: 2026-04-15 00:35
libexpat1	CVE-2025-66382	中危	2.4.7-1ubuntu0.5		libexpat: libexpat: Denial of service via crafted file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-11-28 07:15 修改: 2026-06-02 14:16
libexpat1	CVE-2026-24515	中危	2.4.7-1ubuntu0.5	2.4.7-1ubuntu0.7	libexpat: libexpat null pointer dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-23 08:16 修改: 2026-06-02 14:16
libexpat1	CVE-2026-25210	中危	2.4.7-1ubuntu0.5	2.4.7-1ubuntu0.7	libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-30 07:16 修改: 2026-06-02 14:16
libfreetype6	CVE-2025-27363	中危	2.11.1+dfsg-1ubuntu0.2	2.11.1+dfsg-1ubuntu0.3	freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27363 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-11 14:15 修改: 2026-04-20 13:15
libgcrypt20	CVE-2026-41989	中危	1.9.4-3ubuntu3	1.9.4-3ubuntu3.2	Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-23 05:16 修改: 2026-04-27 18:33
libgnutls30	CVE-2024-12243	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.6	gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12243 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-02-10 16:15 修改: 2026-05-12 12:16
libgnutls30	CVE-2025-14831	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.8	gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-02-09 15:16 修改: 2026-06-10 18:16
libgnutls30	CVE-2025-32988	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.7	gnutls: Vulnerability in GnuTLS otherName SAN export 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls30	CVE-2025-32989	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.7	gnutls: Vulnerability in GnuTLS SCT extension parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-10 08:15 修改: 2026-05-12 13:16
libgnutls30	CVE-2025-32990	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.7	gnutls: Vulnerability in GnuTLS certtool template parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-10 10:15 修改: 2026-04-20 22:16
libgnutls30	CVE-2025-6395	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.7	gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-10 16:15 修改: 2026-05-12 13:17
libgnutls30	CVE-2026-33845	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-33846	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-04 10:15 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-3832	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-30 18:16 修改: 2026-06-02 17:16
libgnutls30	CVE-2026-3833	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-30 18:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-42009	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-18 13:16 修改: 2026-06-08 17:16
libgnutls30	CVE-2026-42010	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Authentication Bypass via NUL Character in Username 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-07 12:16 修改: 2026-06-10 16:17
libgnutls30	CVE-2026-42011	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Security bypass due to incorrect name constraint handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-07 15:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-42012	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-42013	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-42014	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30	CVE-2026-42015	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgnutls30	CVE-2026-5260	中危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.9	gnutls: gnutls: Information disclosure via heap overread in RSA key exchange 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-05-26 22:16 修改: 2026-06-02 16:16
libgssapi-krb5-2	CVE-2024-3596	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.5	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-07-09 12:15 修改: 2026-05-12 12:16
libgssapi-krb5-2	CVE-2025-24528	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: overflow when calculating ulog block size 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
libgssapi-krb5-2	CVE-2025-3576	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.7	krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libk5crypto3	CVE-2024-3596	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.5	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-07-09 12:15 修改: 2026-05-12 12:16
libk5crypto3	CVE-2025-24528	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: overflow when calculating ulog block size 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
libk5crypto3	CVE-2025-3576	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.7	krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libkrb5-3	CVE-2024-3596	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.5	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-07-09 12:15 修改: 2026-05-12 12:16
libkrb5-3	CVE-2025-24528	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: overflow when calculating ulog block size 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
libkrb5-3	CVE-2025-3576	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.7	krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libkrb5support0	CVE-2024-3596	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.5	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-07-09 12:15 修改: 2026-05-12 12:16
libkrb5support0	CVE-2025-24528	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: overflow when calculating ulog block size 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
libkrb5support0	CVE-2025-3576	中危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.7	krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-04-15 06:15 修改: 2026-05-12 13:17
libmount1	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libnghttp2-14	CVE-2026-27135	中危	1.43.0-1ubuntu0.2	1.43.0-1ubuntu0.3	nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-18 18:16 修改: 2026-05-13 22:16
libpam-modules	CVE-2025-6020	中危	1.4.0-11ubuntu2.5	1.4.0-11ubuntu2.6	linux-pam: Linux-pam directory Traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam-modules-bin	CVE-2025-6020	中危	1.4.0-11ubuntu2.5	1.4.0-11ubuntu2.6	linux-pam: Linux-pam directory Traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam-runtime	CVE-2025-6020	中危	1.4.0-11ubuntu2.5	1.4.0-11ubuntu2.6	linux-pam: Linux-pam directory Traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpam0g	CVE-2025-6020	中危	1.4.0-11ubuntu2.5	1.4.0-11ubuntu2.6	linux-pam: Linux-pam directory Traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
libpng16-16	CVE-2025-64505	中危	1.6.37-3build5	1.6.37-3ubuntu0.1	libpng: LIBPNG heap buffer overflow via malformed palette index 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:28
libpng16-16	CVE-2025-64506	中危	1.6.37-3build5	1.6.37-3ubuntu0.1	libpng: LIBPNG heap buffer over-read 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
libpng16-16	CVE-2025-64720	中危	1.6.37-3build5	1.6.37-3ubuntu0.1	libpng: LIBPNG buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:35
libpng16-16	CVE-2025-65018	中危	1.6.37-3build5	1.6.37-3ubuntu0.1	libpng: LIBPNG heap buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-11-25 00:15 修改: 2025-11-26 18:34
libpng16-16	CVE-2025-66293	中危	1.6.37-3build5	1.6.37-3ubuntu0.3	libpng: LIBPNG out-of-bounds read in png_image_read_composite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-12-03 21:15 修改: 2025-12-16 19:12
libpng16-16	CVE-2026-22695	中危	1.6.37-3build5	1.6.37-3ubuntu0.3	libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
libpng16-16	CVE-2026-22801	中危	1.6.37-3build5	1.6.37-3ubuntu0.3	libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-12 23:15 修改: 2026-01-21 18:58
libpng16-16	CVE-2026-25646	中危	1.6.37-3build5	1.6.37-3ubuntu0.4	libpng: LIBPNG has a heap buffer overflow in png_set_quantize 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-02-10 18:16 修改: 2026-02-13 20:43
libpng16-16	CVE-2026-33416	中危	1.6.37-3build5	1.6.37-3ubuntu0.5	libpng: libpng: Arbitrary code execution due to use-after-free vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 17:16 修改: 2026-04-02 20:28
libpng16-16	CVE-2026-33636	中危	1.6.37-3build5	1.6.37-3ubuntu0.5	libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 17:16 修改: 2026-04-02 18:42
libpng16-16	CVE-2026-34757	中危	1.6.37-3build5	1.6.37-3ubuntu0.5	libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-09 15:16 修改: 2026-05-13 23:07
libpng16-16	CVE-2026-40930	中危	1.6.37-3build5		LIBPNG is a reference library for use in applications that process PNG ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40930 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-04 16:16 修改: 2026-06-04 16:23
libsmartcols1	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
libsqlite3-0	CVE-2025-29088	中危	3.37.2-2ubuntu0.3	3.37.2-2ubuntu0.4	sqlite: Denial of Service in SQLite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-04-10 14:15 修改: 2025-09-30 16:59
libsqlite3-0	CVE-2025-6965	中危	3.37.2-2ubuntu0.3	3.37.2-2ubuntu0.5	sqlite: Integer Truncation in SQLite 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-07-15 14:15 修改: 2026-04-14 10:16
libssh-4	CVE-2025-4877	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.4	libssh: Write beyond bounds in binary to base64 conversion functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4877 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-08-20 13:15 修改: 2026-05-19 14:16
libssh-4	CVE-2025-4878	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.4	libssh: Use of uninitialized variable in privatekey_from_file() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4878 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-07-22 15:15 修改: 2026-05-19 14:16
libssh-4	CVE-2025-5318	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.4	libssh: out-of-bounds read in sftp_handle() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5318 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-06-24 14:15 修改: 2026-02-27 17:16
libssh-4	CVE-2025-5372	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.4	libssh: Incorrect Return Code Handling in ssh_kdf() in libssh 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5372 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-07-04 06:15 修改: 2026-06-15 03:16
libssh-4	CVE-2026-0964	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: Improper sanitation of paths received from SCP servers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0964 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-4	CVE-2026-0967	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: libssh: Denial of Service via inefficient regular expression processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0967 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-4	CVE-2026-0968	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: libssh: Denial of Service due to malformed SFTP message 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0968 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-4	CVE-2026-3731	中危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.7	libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-08 11:15 修改: 2026-03-12 19:02
gnupg	CVE-2025-30258	中危	2.2.27-3ubuntu2.1	2.2.27-3ubuntu2.3	gnupg: verification DoS due to a malicious subkey in the keyring 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-03-19 20:15 修改: 2025-10-16 16:53
libssl3	CVE-2025-15467	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
libssl3	CVE-2025-9230	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.20	openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
libssl3	CVE-2026-31790	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-34182	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
libssl3	CVE-2026-45445	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: AES-OCB IV Ignored on EVP_Cipher() Path 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libsystemd0	CVE-2025-4598	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.16	systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
libsystemd0	CVE-2026-29111	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.19	systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libsystemd0	CVE-2026-40225	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.19	systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libsystemd0	CVE-2026-40226	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.21	systemd: systemd nspawn: Escape-to-host action via crafted config file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libtasn1-6	CVE-2024-12133	中危	4.18.0-4build1	4.18.0-4ubuntu0.1	libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12133 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-02-10 16:15 修改: 2026-05-12 12:16
libtasn1-6	CVE-2025-13151	中危	4.18.0-4build1	4.18.0-4ubuntu0.2	libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-07 22:15 修改: 2026-02-02 19:27
libudev1	CVE-2025-4598	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.16	systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-05-30 14:15 修改: 2026-05-19 16:16
libudev1	CVE-2026-29111	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.19	systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-03-23 22:16 修改: 2026-04-15 16:44
libudev1	CVE-2026-40225	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.19	systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-04-27 19:00
libudev1	CVE-2026-40226	中危	249.11-0ubuntu3.12	249.11-0ubuntu3.21	systemd: systemd nspawn: Escape-to-host action via crafted config file 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-04-17 22:02
libuuid1	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
locales	CVE-2025-0395	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.9	glibc: buffer overflow in the GNU C Library's assert() 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-01-22 13:15 修改: 2026-05-12 13:16
locales	CVE-2025-15281	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-20 14:16 修改: 2026-02-05 17:43
locales	CVE-2025-4802	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.10	glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
locales	CVE-2025-8058	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.11	glibc: Double free in glibc 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-07-23 20:15 修改: 2026-04-15 00:35
locales	CVE-2026-0861	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: Integer overflow in memalign leads to heap corruption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-14 21:15 修改: 2026-02-03 18:26
locales	CVE-2026-0915	中危	2.35-0ubuntu3.8	2.35-0ubuntu3.13	glibc: glibc: Information disclosure via zero-valued network query 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-15 22:16 修改: 2026-01-23 19:36
locales	CVE-2026-4046	中危	2.35-0ubuntu3.8		glibc: glibc: Denial of Service via iconv() function with specific character sets 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-30 18:16 修改: 2026-04-20 22:16
locales	CVE-2026-5435	中危	2.35-0ubuntu3.8		glibc: glibc: Out-of-bounds write via TSIG record processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-28 13:19 修改: 2026-05-05 17:38
locales	CVE-2026-6238	中危	2.35-0ubuntu3.8		glibc: glibc: Application crash or uninitialized memory read via crafted DNS response 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-28 19:37 修改: 2026-05-04 17:57
mount	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
curl	CVE-2026-1965	中危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:15 修改: 2026-03-12 14:11
openssl	CVE-2025-15467	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-06-09 10:16
openssl	CVE-2025-9230	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.20	openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
openssl	CVE-2026-31790	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-34182	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
openssl	CVE-2026-45445	中危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: AES-OCB IV Ignored on EVP_Cipher() Path 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
perl-base	CVE-2024-56406	中危	5.34.0-3ubuntu1.3	5.34.0-3ubuntu1.4	perl: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56406 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-04-13 14:15 修改: 2025-10-16 14:15
perl-base	CVE-2025-40909	中危	5.34.0-3ubuntu1.3	5.34.0-3ubuntu1.5	perl: Perl threads have a working directory race condition where file operations may target unintended paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-05-30 13:15 修改: 2026-04-18 15:16
sed	CVE-2026-5958	中危	4.8-1ubuntu2	4.8-1ubuntu2.1	sed: GNU sed TOCTOU race condition 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-20 12:16 修改: 2026-05-19 15:17
tar	CVE-2025-45582	中危	1.34+dfsg-1ubuntu0.1.22.04.2		tar: Tar path traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-11 17:15 修改: 2025-11-02 01:15
tar	CVE-2026-5704	中危	1.34+dfsg-1ubuntu0.1.22.04.2		tar: tar: Hidden file injection via crafted archives 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-06 16:16 修改: 2026-04-22 20:08
util-linux	CVE-2026-27456	中危	2.37.2-4ubuntu3.4		util-linux: TOCTOU in the mount program when setting up loop devices 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-03 22:16 修改: 2026-04-22 16:08
wget	CVE-2021-31879	中危	1.21.2-2ubuntu1.1		wget: authorization header disclosure on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2021-04-29 05:15 修改: 2024-11-21 06:06
libkrb5support0	CVE-2024-26458	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5support0	CVE-2024-26461	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
liblzma5	CVE-2026-34743	低危	5.2.5-2ubuntu1	5.2.5-2ubuntu1.1	xz: XZ Utils: Denial of Service via buffer overflow in index decoding 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-02 19:21 修改: 2026-04-15 17:33
libcurl4	CVE-2025-15224	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: libssh key passphrase bypass without agent set 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
libncurses6	CVE-2023-50495	低危	6.3-2ubuntu0.1		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libncursesw6	CVE-2023-50495	低危	6.3-2ubuntu0.1		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libssl3	CVE-2024-13176	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.19	openssl: Timing side-channel in ECDSA signature computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
libssl3	CVE-2024-9143	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.19	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-10-16 17:15 修改: 2026-05-12 12:17
libssl3	CVE-2025-68160	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2025-69418	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2025-69419	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2025-69420	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via malformed TimeStamp Response 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2025-69421	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-22795	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-22796	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-28387	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-28388	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-28389	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service vulnerability in CMS processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-28390	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-31789	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
libssl3	CVE-2026-34180	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure. 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
libssl3	CVE-2026-42766	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Possible NULL Dereference in Password-Based CMS Decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
libssl3	CVE-2026-42767	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3	CVE-2026-42770	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: FFC-DH Peer Validation Uses Attacker-Supplied q 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3	CVE-2026-45446	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3	CVE-2026-7383	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libssl3	CVE-2026-9076	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
libstdc++6	CVE-2022-27943	低危	12.3.0-1ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libstdc++6	CVE-2023-4039	低危	12.3.0-1ubuntu1~22.04	12.3.0-1ubuntu1~22.04.2	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
libcurl4	CVE-2026-3784	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
libcurl4	CVE-2026-4873	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: curl: Information disclosure due to incorrect TLS connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libcurl4	CVE-2026-5773	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libcurl4	CVE-2026-6276	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
libsystemd0	CVE-2023-7008	低危	249.11-0ubuntu3.12	249.11-0ubuntu3.21	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-23 13:15 修改: 2025-11-04 17:15
libsystemd0	CVE-2026-40228	低危	249.11-0ubuntu3.12		systemd: systemd-journald: Unintended output to user terminals via logger command 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
curl	CVE-2026-5773	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-13 19:13
libpcre2-8-0	CVE-2022-41409	低危	10.39-3ubuntu0.1		pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-07-18 14:15 修改: 2024-11-21 07:23
libtasn1-6	CVE-2021-46848	低危	4.18.0-4build1	4.18.0-4ubuntu0.2	libtasn1: Out-of-bound access in ETYPE_OK 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2022-10-24 14:15 修改: 2025-05-07 15:15
libtinfo6	CVE-2023-50495	低危	6.3-2ubuntu0.1		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libpcre3	CVE-2017-11164	低危	2:8.39-13ubuntu0.22.04.1		pcre: OP_KETRMAX feature in the match function in pcre_exec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2017-07-11 03:29 修改: 2025-04-20 01:37
curl	CVE-2026-6276	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 14:21
curl	CVE-2025-0167	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	When asked to use a `.netrc` file for credentials and to follow HT ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
curl	CVE-2025-14524	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libudev1	CVE-2023-7008	低危	249.11-0ubuntu3.12	249.11-0ubuntu3.21	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-23 13:15 修改: 2025-11-04 17:15
libudev1	CVE-2026-40228	低危	249.11-0ubuntu3.12		systemd: systemd-journald: Unintended output to user terminals via logger command 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-04-10 16:16 修改: 2026-05-05 02:16
dpkg	CVE-2025-6297	低危	1.21.1ubuntu2.3	1.21.1ubuntu2.6	It was discovered that dpkg-deb does not properly sanitize directory p ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2025-07-01 17:15 修改: 2025-08-19 17:50
libzstd1	CVE-2022-4899	低危	1.4.8+dfsg-3build1		zstd: mysql: buffer overrun in util.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-03-31 20:15 修改: 2025-02-18 18:15
libgnutls30	CVE-2025-9820	低危	3.7.3-4ubuntu1.5	3.7.3-4ubuntu1.8	gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2026-01-26 20:16 修改: 2026-05-12 13:17
libgcc-s1	CVE-2022-27943	低危	12.3.0-1ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libgcc-s1	CVE-2023-4039	低危	12.3.0-1ubuntu1~22.04	12.3.0-1ubuntu1~22.04.2	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
gcc-12-base	CVE-2022-27943	低危	12.3.0-1ubuntu1~22.04		binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2022-03-26 13:15 修改: 2024-11-21 06:56
libgssapi-krb5-2	CVE-2024-26458	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libgssapi-krb5-2	CVE-2024-26461	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
libgcrypt20	CVE-2024-2236	低危	1.9.4-3ubuntu3		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-03-06 22:15 修改: 2026-04-15 00:35
gcc-12-base	CVE-2023-4039	低危	12.3.0-1ubuntu1~22.04	12.3.0-1ubuntu1~22.04.2	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-09-13 09:15 修改: 2025-02-13 17:17
curl	CVE-2025-15079	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: Host verification bypass during SSH transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
login	CVE-2023-29383	低危	1:4.8.1-2ubuntu2.2		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-04-14 22:15 修改: 2025-11-03 20:16
login	CVE-2024-56433	低危	1:4.8.1-2ubuntu2.2		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
libk5crypto3	CVE-2024-26458	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
ncurses-base	CVE-2023-50495	低危	6.3-2ubuntu0.1		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
ncurses-bin	CVE-2023-50495	低危	6.3-2ubuntu0.1		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-12-12 15:15 修改: 2025-11-04 19:16
libk5crypto3	CVE-2024-26461	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
curl	CVE-2025-15224	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: libssh key passphrase bypass without agent set 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:47
curl	CVE-2026-3784	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	curl: curl: Unauthorized access due to improper HTTP proxy connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-11 11:16 修改: 2026-06-02 14:16
curl	CVE-2026-4873	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.24	curl: curl: Information disclosure due to incorrect TLS connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-05-13 13:01 修改: 2026-05-14 13:45
libkrb5-3	CVE-2024-26458	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:39
libkrb5-3	CVE-2024-26461	低危	1.19.2-2ubuntu0.4	1.19.2-2ubuntu0.6	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-02-29 01:44 修改: 2025-05-23 15:30
openssl	CVE-2024-13176	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.19	openssl: Timing side-channel in ECDSA signature computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-01-20 14:15 修改: 2026-04-15 00:35
openssl	CVE-2024-9143	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.19	openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2024-10-16 17:15 修改: 2026-05-12 12:17
openssl	CVE-2025-68160	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69418	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69419	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69420	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via malformed TimeStamp Response 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2025-69421	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2026-22795	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2026-22796	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.21	openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-27 16:16 修改: 2026-05-12 13:17
openssl	CVE-2026-28387	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-28388	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-28389	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service vulnerability in CMS processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-28390	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-31789	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.23	openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-04-07 22:16 修改: 2026-05-12 13:17
openssl	CVE-2026-34180	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure. 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:13
openssl	CVE-2026-42766	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Possible NULL Dereference in Password-Based CMS Decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-15 18:25
openssl	CVE-2026-42767	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
openssl	CVE-2026-42770	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: FFC-DH Peer Validation Uses Attacker-Supplied q 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
openssl	CVE-2026-45446	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
openssl	CVE-2026-7383	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
openssl	CVE-2026-9076	低危	3.0.2-0ubuntu1.18	3.0.2-0ubuntu1.25	openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-06-09 17:17 修改: 2026-06-10 08:16
passwd	CVE-2023-29383	低危	1:4.8.1-2ubuntu2.2		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2023-04-14 22:15 修改: 2025-11-03 20:16
passwd	CVE-2024-56433	低危	1:4.8.1-2ubuntu2.2		shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:270a1170e7e398434ff1b31e17e233f7d7b71aa99a40473615860068e86720af 发布日期: 2024-12-26 09:15 修改: 2026-04-15 00:35
libcurl4	CVE-2025-0167	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.23	When asked to use a `.netrc` file for credentials and to follow HT ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-02-05 10:15 修改: 2025-07-30 19:41
libcurl4	CVE-2025-14524	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:53
libcurl4	CVE-2025-15079	低危	7.81.0-1ubuntu1.20	7.81.0-1ubuntu1.22	curl: Host verification bypass during SSH transfers 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-01-08 10:15 修改: 2026-01-20 14:50
libssh-4	CVE-2025-8114	低危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.5	libssh: NULL Pointer Dereference in libssh KEX Session ID Calculation 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8114 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-07-24 15:15 修改: 2026-05-19 14:16
libssh-4	CVE-2025-8277	低危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: Memory Exhaustion via Repeated Key Exchange in libssh 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8277 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2025-09-09 12:15 修改: 2026-05-19 14:16
libssh-4	CVE-2026-0965	低危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: libssh: Denial of Service via improper configuration file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0965 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16
libssh-4	CVE-2026-0966	低危	0.9.6-2ubuntu0.22.04.3	0.9.6-2ubuntu0.22.04.6	libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa() 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0966 镜像层: sha256:ffa4ffba3162cc4d41220d898690e6c5efb52fb5d8d40363312eeb3ec3380bb6 发布日期: 2026-03-26 21:17 修改: 2026-05-19 14:16

Java (jar)

低危漏洞:0

中危漏洞:4

高危漏洞:2

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
org.apache.flink:flink-table-planner_2.12	CVE-2026-35194	高危	1.18.1	1.20.4, 2.0.2, 2.1.2, 2.2.1	Apache Flink: Remote code execution via SQL injection in code generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35194 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2026-05-15 16:16 修改: 2026-05-18 19:48
org.apache.flink:flink-table-runtime	CVE-2026-35194	高危	1.18.1	1.20.4, 2.0.2, 2.1.2, 2.2.1	Apache Flink: Remote code execution via SQL injection in code generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35194 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2026-05-15 16:16 修改: 2026-05-18 19:48
org.apache.logging.log4j:log4j-1.2-api	CVE-2026-34479	中危	2.17.1	2.25.4	org.apache.logging.log4j/log4j-1.2-api: Apache Log4j 1-to-Log4j 2 bridge: Log processing denial of service due to improper XML escaping 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34479 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2026-04-10 16:16 修改: 2026-05-06 18:21
org.apache.logging.log4j:log4j-core	CVE-2025-68161	中危	2.17.1	2.25.3	Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2025-12-18 21:15 修改: 2026-01-20 01:15
org.apache.logging.log4j:log4j-core	CVE-2026-34477	中危	2.17.1	2.25.4	org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2026-04-10 16:16 修改: 2026-05-06 16:49
org.apache.logging.log4j:log4j-core	CVE-2026-34480	中危	2.17.1	2.25.4	org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging 漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480 镜像层: sha256:a24feaf22548f85804abf9f586f4aab42aa988221c4db0d687543c1c416fadda 发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:21