docker.io/library/flink:1.20.0 linux/arm64

docker.io/library/flink:1.20.0 - Trivy安全扫描结果 扫描时间: 2026-07-15 14:59 温馨提示: 这是一个 linux/arm64 系统架构镜像
全部漏洞信息
低危漏洞:110 中危漏洞:172 高危漏洞:15 严重漏洞:0

系统OS: ubuntu 22.04 扫描引擎: Trivy 扫描时间: 2026-07-15 14:59

docker.io/library/flink:1.20.0 (ubuntu 22.04) (ubuntu)
低危漏洞:110 中危漏洞:168 高危漏洞:13 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
dirmngr CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gnupg CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gnupg-l10n CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gnupg-utils CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpg CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpg-agent CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpg-wks-client CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpg-wks-server CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpgconf CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpgsm CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

gpgv CVE-2025-68973 高危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.5 GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-12-28 17:16 修改: 2026-06-17 09:59

libssl3 CVE-2026-45447 高危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-07-14 12:17

openssl CVE-2026-45447 高危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Heap Use-After-Free in OpenSSL PKCS7_verify()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45447

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-07-14 12:17

gnupg CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-1965 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16

gnupg-l10n CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-3783 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

gnupg-utils CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-5545 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

gpg CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-6253 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

gpg-agent CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-6429 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

gpg-wks-client CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-7168 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01

gpg-wks-server CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-8925 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Double-free vulnerability in SASL authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04

gpgconf CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

curl CVE-2026-8927 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 libcurl: libcurl: Information disclosure due to uncleared proxy authentication state

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21

gpgsm CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

bsdutils CVE-2026-27456 中危 1:2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

gpgv CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gzip CVE-2026-41991 中危 1.10-4ubuntu4.1 1.10-4ubuntu4.2 gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

gzip CVE-2026-41992 中危 1.10-4ubuntu4.1 1.10-4ubuntu4.2 GNU gzip contains a global buffer overflow vulnerability in the LZH de ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

libblkid1 CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libc-bin CVE-2025-0395 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.9 glibc: buffer overflow in the GNU C Library's assert()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-01-22 13:15 修改: 2026-06-17 08:26

libc-bin CVE-2025-15281 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37

libc-bin CVE-2025-4802 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.10 glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-05-16 20:15 修改: 2026-06-17 09:34

libc-bin CVE-2025-8058 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.11 glibc: Double free in glibc

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-23 20:15 修改: 2026-06-17 10:06

libc-bin CVE-2026-0861 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11

libc-bin CVE-2026-0915 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11

libc-bin CVE-2026-4046 中危 2.35-0ubuntu3.8 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

libc-bin CVE-2026-5435 中危 2.35-0ubuntu3.8 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc-bin CVE-2026-6238 中危 2.35-0ubuntu3.8 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libc6 CVE-2025-0395 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.9 glibc: buffer overflow in the GNU C Library's assert()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-01-22 13:15 修改: 2026-06-17 08:26

libc6 CVE-2025-15281 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37

libc6 CVE-2025-4802 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.10 glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-05-16 20:15 修改: 2026-06-17 09:34

libc6 CVE-2025-8058 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.11 glibc: Double free in glibc

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-23 20:15 修改: 2026-06-17 10:06

libc6 CVE-2026-0861 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11

libc6 CVE-2026-0915 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11

libc6 CVE-2026-4046 中危 2.35-0ubuntu3.8 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

libc6 CVE-2026-5435 中危 2.35-0ubuntu3.8 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc6 CVE-2026-6238 中危 2.35-0ubuntu3.8 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libcap2 CVE-2025-1390 中危 1:2.44-1ubuntu0.22.04.1 1:2.44-1ubuntu0.22.04.2 libcap: pam_cap: Fix potential configuration parsing error

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1390

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-02-18 03:15 修改: 2026-06-17 08:39

libcap2 CVE-2026-4878 中危 1:2.44-1ubuntu0.22.04.1 1:2.44-1ubuntu0.22.04.3 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-09 16:16 修改: 2026-07-14 12:17

libcurl4 CVE-2025-14017 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35

libcurl4 CVE-2026-1965 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Authentication bypass due to incorrect connection reuse with Negotiate authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1965

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:15 修改: 2026-06-17 10:16

libcurl4 CVE-2026-3783 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Information disclosure via OAuth2 bearer token leakage during HTTP(S) redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3783

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libcurl4 CVE-2026-5545 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Authentication bypass due to incorrect HTTP Negotiate connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5545

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libcurl4 CVE-2026-6253 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: curl: Proxy credential disclosure via redirects to unauthenticated proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6253

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libcurl4 CVE-2026-6429 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Credential leak via reused proxy connection during HTTP redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6429

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libcurl4 CVE-2026-7168 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Information disclosure via incorrect Proxy-Authorization header reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7168

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:01

libcurl4 CVE-2026-8925 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Double-free vulnerability in SASL authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8925

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:04

libcurl4 CVE-2026-8927 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 libcurl: libcurl: Information disclosure due to uncleared proxy authentication state

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8927

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:21

libexpat1 CVE-2024-8176 中危 2.4.7-1ubuntu0.5 2.4.7-1ubuntu0.6 libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8176

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-14 09:15 修改: 2026-06-30 00:16

libexpat1 CVE-2025-66382 中危 2.4.7-1ubuntu0.5 libexpat: libexpat: Denial of service via crafted file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56

libexpat1 CVE-2026-24515 中危 2.4.7-1ubuntu0.5 2.4.7-1ubuntu0.7 libexpat: libexpat null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23

libexpat1 CVE-2026-25210 中危 2.4.7-1ubuntu0.5 2.4.7-1ubuntu0.7 libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24

libfreetype6 CVE-2025-27363 中危 2.11.1+dfsg-1ubuntu0.2 2.11.1+dfsg-1ubuntu0.3 freetype: OOB write when attempting to parse font subglyph structures related to TrueType GX and variable font files

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27363

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-11 14:15 修改: 2026-06-17 09:03

libgcrypt20 CVE-2026-41989 中危 1.9.4-3ubuntu3 1.9.4-3ubuntu3.2 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-23 05:16 修改: 2026-06-17 10:47

libgnutls30 CVE-2024-12243 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.6 gnutls: GnuTLS Impacted by Inefficient DER Decoding in libtasn1 Leading to Remote DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12243

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-02-10 16:15 修改: 2026-06-17 06:59

libgnutls30 CVE-2025-14831 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.8 gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14831

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-02-09 15:16 修改: 2026-06-30 00:16

libgnutls30 CVE-2025-32988 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.7 gnutls: Vulnerability in GnuTLS otherName SAN export

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32988

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-10 08:15 修改: 2026-06-30 01:16

libgnutls30 CVE-2025-32989 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.7 gnutls: Vulnerability in GnuTLS SCT extension parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32989

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-10 08:15 修改: 2026-06-30 01:16

libgnutls30 CVE-2025-32990 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.7 gnutls: Vulnerability in GnuTLS certtool template parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32990

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-10 10:15 修改: 2026-06-30 01:16

libgnutls30 CVE-2025-6395 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.7 gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6395

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-10 16:15 修改: 2026-06-30 02:16

libgnutls30 CVE-2026-33845 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-30 18:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-33846 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-04 10:15 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-3832 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Security bypass allows acceptance of revoked server certificates via crafted OCSP response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3832

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-30 18:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-3833 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-30 18:16 修改: 2026-07-13 22:16

libgnutls30 CVE-2026-42009 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-18 13:16 修改: 2026-07-14 12:17

libgnutls30 CVE-2026-42010 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-07 12:16 修改: 2026-07-14 12:17

libgnutls30 CVE-2026-42011 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-07 15:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-42012 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 22:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-42013 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 22:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-42014 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-16 02:16 修改: 2026-07-13 21:16

libgnutls30 CVE-2026-42015 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 22:16 修改: 2026-07-13 17:17

libgnutls30 CVE-2026-5260 中危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.9 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 22:16 修改: 2026-07-13 17:18

libgssapi-krb5-2 CVE-2024-3596 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.5 freeradius: forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-07-09 12:15 修改: 2026-06-17 07:44

libgssapi-krb5-2 CVE-2025-24528 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: overflow when calculating ulog block size

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-16 18:16 修改: 2026-06-17 08:59

libgssapi-krb5-2 CVE-2025-3576 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.7 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16

libk5crypto3 CVE-2024-3596 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.5 freeradius: forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-07-09 12:15 修改: 2026-06-17 07:44

libk5crypto3 CVE-2025-24528 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: overflow when calculating ulog block size

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-16 18:16 修改: 2026-06-17 08:59

libk5crypto3 CVE-2025-3576 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.7 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16

libkrb5-3 CVE-2024-3596 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.5 freeradius: forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-07-09 12:15 修改: 2026-06-17 07:44

libkrb5-3 CVE-2025-24528 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: overflow when calculating ulog block size

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-16 18:16 修改: 2026-06-17 08:59

libkrb5-3 CVE-2025-3576 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.7 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16

libkrb5support0 CVE-2024-3596 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.5 freeradius: forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-07-09 12:15 修改: 2026-06-17 07:44

libkrb5support0 CVE-2025-24528 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: overflow when calculating ulog block size

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-16 18:16 修改: 2026-06-17 08:59

libkrb5support0 CVE-2025-3576 中危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.7 krb5: Kerberos RC4-HMAC-MD5 Checksum Vulnerability Enabling Message Spoofing via MD5 Collisions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-3576

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-04-15 06:15 修改: 2026-06-30 01:16

libmount1 CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libnghttp2-14 CVE-2026-27135 中危 1.43.0-1ubuntu0.2 1.43.0-1ubuntu0.3 nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-18 18:16 修改: 2026-06-30 03:17

libnghttp2-14 CVE-2026-58055 中危 1.43.0-1ubuntu0.2 1.43.0-1ubuntu0.4 nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41

libp11-kit0 CVE-2026-13757 中危 0.24.0-6build1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16

libpam-modules CVE-2025-6020 中危 1.4.0-11ubuntu2.5 1.4.0-11ubuntu2.6 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16

libpam-modules-bin CVE-2025-6020 中危 1.4.0-11ubuntu2.5 1.4.0-11ubuntu2.6 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16

libpam-runtime CVE-2025-6020 中危 1.4.0-11ubuntu2.5 1.4.0-11ubuntu2.6 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16

libpam0g CVE-2025-6020 中危 1.4.0-11ubuntu2.5 1.4.0-11ubuntu2.6 linux-pam: Linux-pam directory Traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-06-17 13:15 修改: 2026-06-30 11:16

libpng16-16 CVE-2025-64505 中危 1.6.37-3build5 1.6.37-3ubuntu0.1 libpng: LIBPNG heap buffer overflow via malformed palette index

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54

libpng16-16 CVE-2025-64506 中危 1.6.37-3build5 1.6.37-3ubuntu0.1 libpng: LIBPNG heap buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54

libpng16-16 CVE-2025-64720 中危 1.6.37-3build5 1.6.37-3ubuntu0.1 libpng: LIBPNG buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55

libpng16-16 CVE-2025-65018 中危 1.6.37-3build5 1.6.37-3ubuntu0.1 libpng: LIBPNG heap buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55

libpng16-16 CVE-2025-66293 中危 1.6.37-3build5 1.6.37-3ubuntu0.3 libpng: LIBPNG out-of-bounds read in png_image_read_composite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-12-03 21:15 修改: 2026-06-17 09:56

libpng16-16 CVE-2026-22695 中危 1.6.37-3build5 1.6.37-3ubuntu0.3 libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20

libpng16-16 CVE-2026-22801 中危 1.6.37-3build5 1.6.37-3ubuntu0.3 libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20

libpng16-16 CVE-2026-25646 中危 1.6.37-3build5 1.6.37-3ubuntu0.4 libpng: LIBPNG has a heap buffer overflow in png_set_quantize

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-02-10 18:16 修改: 2026-06-30 03:17

libpng16-16 CVE-2026-33416 中危 1.6.37-3build5 1.6.37-3ubuntu0.5 libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37

libpng16-16 CVE-2026-33636 中危 1.6.37-3build5 1.6.37-3ubuntu0.5 libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37

libpng16-16 CVE-2026-34757 中危 1.6.37-3build5 1.6.37-3ubuntu0.5 libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-09 15:16 修改: 2026-06-17 10:39

libpng16-16 CVE-2026-40930 中危 1.6.37-3build5 LIBPNG is a reference library for use in applications that process PNG ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40930

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-04 16:16 修改: 2026-06-17 10:45

libsmartcols1 CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libsqlite3-0 CVE-2025-29088 中危 3.37.2-2ubuntu0.3 3.37.2-2ubuntu0.4 sqlite: Denial of Service in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-29088

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-04-10 14:15 修改: 2026-06-17 09:05

libsqlite3-0 CVE-2025-6965 中危 3.37.2-2ubuntu0.3 3.37.2-2ubuntu0.5 sqlite: Integer Truncation in SQLite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-07-15 14:15 修改: 2026-06-26 16:36

libsqlite3-0 CVE-2026-11822 中危 3.37.2-2ubuntu0.3 3.37.2-2ubuntu0.6 SQLite before 3.53.2 contains memory corruption vulnerabilities in the ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11822

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libsqlite3-0 CVE-2026-11824 中危 3.37.2-2ubuntu0.3 3.37.2-2ubuntu0.6 SQLite before 3.53.2 contains a heap-based buffer overflow vulnerabili ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11824

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 20:16 修改: 2026-06-17 10:14

libssh-4 CVE-2025-4877 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.4 libssh: Write beyond bounds in binary to base64 conversion functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4877

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-08-20 13:15 修改: 2026-06-30 11:16

libssh-4 CVE-2025-4878 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.4 libssh: Use of uninitialized variable in privatekey_from_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4878

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-07-22 15:15 修改: 2026-06-30 11:16

libssh-4 CVE-2025-5318 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.4 libssh: out-of-bounds read in sftp_handle()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5318

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-06-24 14:15 修改: 2026-06-30 11:16

libssh-4 CVE-2025-5372 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.4 libssh: Incorrect Return Code Handling in ssh_kdf() in libssh

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5372

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-07-04 06:15 修改: 2026-06-17 09:47

libssh-4 CVE-2026-0964 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: Improper sanitation of paths received from SCP servers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0964

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 21:17 修改: 2026-06-17 10:11

libssh-4 CVE-2026-0967 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: libssh: Denial of Service via inefficient regular expression processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0967

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 21:17 修改: 2026-06-17 10:11

libssh-4 CVE-2026-0968 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: libssh: Denial of Service due to malformed SFTP message

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0968

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 21:17 修改: 2026-06-17 10:11

libssh-4 CVE-2026-3731 中危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.7 libssh: libssh: Denial of Service via out-of-bounds read in SFTP extension name handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3731

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-08 11:15 修改: 2026-06-17 10:44

dirmngr CVE-2025-30258 中危 2.2.27-3ubuntu2.1 2.2.27-3ubuntu2.3 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

libssl3 CVE-2025-15467 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-30 03:16

libssl3 CVE-2025-9230 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.20 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libssl3 CVE-2026-31790 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

libssl3 CVE-2026-34182 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3 CVE-2026-45445 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

libsystemd0 CVE-2025-4598 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.16 systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-05-30 14:15 修改: 2026-06-30 11:16

libsystemd0 CVE-2026-29111 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.19 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29

libsystemd0 CVE-2026-40225 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.19 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libsystemd0 CVE-2026-40226 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.21 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libtasn1-6 CVE-2024-12133 中危 4.18.0-4build1 4.18.0-4ubuntu0.1 libtasn1: Inefficient DER Decoding in libtasn1 Leading to Potential Remote DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-12133

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-02-10 16:15 修改: 2026-06-30 03:16

libtasn1-6 CVE-2025-13151 中危 4.18.0-4build1 4.18.0-4ubuntu0.2 libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33

libudev1 CVE-2025-4598 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.16 systemd-coredump: race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4598

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-05-30 14:15 修改: 2026-06-30 11:16

libudev1 CVE-2026-29111 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.19 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29

libudev1 CVE-2026-40225 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.19 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libudev1 CVE-2026-40226 中危 249.11-0ubuntu3.12 249.11-0ubuntu3.21 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libuuid1 CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

locales CVE-2025-0395 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.9 glibc: buffer overflow in the GNU C Library's assert()

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0395

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-01-22 13:15 修改: 2026-06-17 08:26

locales CVE-2025-15281 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37

locales CVE-2025-4802 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.10 glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-05-16 20:15 修改: 2026-06-17 09:34

locales CVE-2025-8058 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.11 glibc: Double free in glibc

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8058

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-07-23 20:15 修改: 2026-06-17 10:06

locales CVE-2026-0861 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11

locales CVE-2026-0915 中危 2.35-0ubuntu3.8 2.35-0ubuntu3.13 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11

locales CVE-2026-4046 中危 2.35-0ubuntu3.8 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

locales CVE-2026-5435 中危 2.35-0ubuntu3.8 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

locales CVE-2026-6238 中危 2.35-0ubuntu3.8 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

mount CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

curl CVE-2025-14017 中危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: curl: Security bypass due to global TLS option changes in multi-threaded LDAPS transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14017

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:35

openssl CVE-2025-15467 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-30 03:16

openssl CVE-2025-9230 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.20 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

openssl CVE-2026-31790 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

openssl CVE-2026-34182 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34182

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-45445 中危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: AES-OCB IV Ignored on EVP_Cipher() Path

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45445

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

p11-kit CVE-2026-13757 中危 0.24.0-6build1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16

p11-kit-modules CVE-2026-13757 中危 0.24.0-6build1 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-29 19:16 修改: 2026-07-13 06:16

perl-base CVE-2024-56406 中危 5.34.0-3ubuntu1.3 5.34.0-3ubuntu1.4 perl: Perl 5.34, 5.36, 5.38 and 5.40 are vulnerable to a heap buffer overflow when transliterating non-ASCII bytes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56406

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-04-13 14:15 修改: 2026-06-17 08:12

perl-base CVE-2025-40909 中危 5.34.0-3ubuntu1.3 5.34.0-3ubuntu1.5 perl: Perl threads have a working directory race condition where file operations may target unintended paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40909

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-05-30 13:15 修改: 2026-06-17 09:22

perl-base CVE-2026-42496 中危 5.34.0-3ubuntu1.3 5.34.0-3ubuntu1.7 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl-base CVE-2026-8376 中危 5.34.0-3ubuntu1.3 5.34.0-3ubuntu1.7 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

sed CVE-2026-5958 中危 4.8-1ubuntu2 4.8-1ubuntu2.1 sed: GNU sed TOCTOU race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-20 12:16 修改: 2026-06-17 10:59

tar CVE-2025-45582 中危 1.34+dfsg-1ubuntu0.1.22.04.2 1.34+dfsg-1ubuntu0.1.22.04.4 tar: Tar path traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25

tar CVE-2026-5704 中危 1.34+dfsg-1ubuntu0.1.22.04.2 1.34+dfsg-1ubuntu0.1.22.04.3 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59

util-linux CVE-2026-27456 中危 2.37.2-4ubuntu3.4 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

wget CVE-2021-31879 中危 1.21.2-2ubuntu1.1 wget: authorization header disclosure on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2021-04-29 05:15 修改: 2026-06-17 03:52

wget CVE-2026-58469 中危 1.21.2-2ubuntu1.1 GNU Wget through 1.25.0, fixed in commit 37a40fc, contains a heap buff ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58469

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-07 21:17 修改: 2026-07-09 15:59

wget CVE-2026-58470 中危 1.21.2-2ubuntu1.1 GNU Wget through 1.25.0, fixed in commit 43d3ba9, contains an integer ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58470

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-07 21:17 修改: 2026-07-09 16:01

wget CVE-2026-58471 中危 1.21.2-2ubuntu1.1 wget: GNU Wget: Heap buffer overflow via server-supplied filename leads to memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58471

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-07 21:17 修改: 2026-07-09 16:02

wget CVE-2026-58472 中危 1.21.2-2ubuntu1.1 GNU Wget through 1.25.0, fixed in commit dd692d9, contains a heap buff ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58472

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-07 21:17 修改: 2026-07-09 15:58

libssh-4 CVE-2026-0965 低危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: libssh: Denial of Service via improper configuration file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0965

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 21:17 修改: 2026-06-17 10:11

libssh-4 CVE-2026-0966 低危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: libssh: Denial of Service via zero-length input in ssh_get_hexa()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0966

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-26 21:17 修改: 2026-06-17 10:11

libkrb5-3 CVE-2024-26461 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libgcc-s1 CVE-2023-4039 低危 12.3.0-1ubuntu1~22.04 12.3.0-1ubuntu1~22.04.2 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17

dpkg CVE-2025-6297 低危 1.21.1ubuntu2.3 1.21.1ubuntu2.6 It was discovered that dpkg-deb does not properly sanitize directory p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-07-01 17:15 修改: 2026-07-08 09:16

libgcrypt20 CVE-2024-2236 低危 1.9.4-3ubuntu3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24

libkrb5support0 CVE-2024-26458 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libkrb5support0 CVE-2024-26461 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libssl3 CVE-2024-13176 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.19 openssl: Timing side-channel in ECDSA signature computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01

libssl3 CVE-2024-9143 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.19 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-10-16 17:15 修改: 2026-06-17 08:24

libssl3 CVE-2025-68160 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58

libssl3 CVE-2025-69418 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-69419 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-69420 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-69421 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2026-22795 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libssl3 CVE-2026-22796 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libssl3 CVE-2026-28387 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28388 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28389 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28390 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-31789 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

libssl3 CVE-2026-34180 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

libssl3 CVE-2026-42766 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3 CVE-2026-42767 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3 CVE-2026-42770 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

libssl3 CVE-2026-45446 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

libssl3 CVE-2026-7383 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

libssl3 CVE-2026-9076 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

libstdc++6 CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

libstdc++6 CVE-2023-4039 低危 12.3.0-1ubuntu1~22.04 12.3.0-1ubuntu1~22.04.2 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17

liblzma5 CVE-2026-34743 低危 5.2.5-2ubuntu1 5.2.5-2ubuntu1.1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

gcc-12-base CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

libncurses6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libncurses6 CVE-2025-69720 低危 6.3-2ubuntu0.1 6.3-2ubuntu0.2 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libsystemd0 CVE-2023-7008 低危 249.11-0ubuntu3.12 249.11-0ubuntu3.21 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-23 13:15 修改: 2026-06-17 06:51

libsystemd0 CVE-2026-40228 低危 249.11-0ubuntu3.12 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libncursesw6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libncursesw6 CVE-2025-69720 低危 6.3-2ubuntu0.1 6.3-2ubuntu0.2 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libtasn1-6 CVE-2021-46848 低危 4.18.0-4build1 4.18.0-4ubuntu0.2 libtasn1: Out-of-bound access in ETYPE_OK

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2022-10-24 14:15 修改: 2026-06-17 04:15

libtinfo6 CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libtinfo6 CVE-2025-69720 低危 6.3-2ubuntu0.1 6.3-2ubuntu0.2 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

gcc-12-base CVE-2023-4039 低危 12.3.0-1ubuntu1~22.04 12.3.0-1ubuntu1~22.04.2 gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-09-13 09:15 修改: 2026-06-23 18:17

curl CVE-2025-15079 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

curl CVE-2025-15224 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

curl CVE-2026-3784 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

libudev1 CVE-2023-7008 低危 249.11-0ubuntu3.12 249.11-0ubuntu3.21 systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-23 13:15 修改: 2026-06-17 06:51

libudev1 CVE-2026-40228 低危 249.11-0ubuntu3.12 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

curl CVE-2026-4873 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57

libzstd1 CVE-2022-4899 低危 1.4.8+dfsg-3build1 zstd: mysql: buffer overrun in util.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4899

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-03-31 20:15 修改: 2026-06-17 05:22

curl CVE-2026-5773 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

curl CVE-2026-6276 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libpcre2-8-0 CVE-2022-41409 低危 10.39-3ubuntu0.1 pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-07-18 14:15 修改: 2026-06-17 05:03

libpcre3 CVE-2017-11164 低危 2:8.39-13ubuntu0.22.04.1 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2017-07-11 03:29 修改: 2026-06-17 01:01

curl CVE-2026-8286 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Insecure connection establishment due to TLS configuration mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42

libcurl4 CVE-2025-0167 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 When asked to use a `.netrc` file for credentials **and** to follow HT ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:25

libcurl4 CVE-2025-14524 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

libcurl4 CVE-2025-15079 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: Host verification bypass during SSH transfers

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15079

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

libcurl4 CVE-2025-15224 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: libssh key passphrase bypass without agent set

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15224

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:37

login CVE-2023-29383 低危 1:4.8.1-2ubuntu2.2 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-04-14 22:15 修改: 2026-06-17 05:49

login CVE-2024-56433 低危 1:4.8.1-2ubuntu2.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libcurl4 CVE-2026-3784 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 curl: curl: Unauthorized access due to improper HTTP proxy connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3784

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-03-11 11:16 修改: 2026-06-17 10:44

ncurses-base CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

ncurses-base CVE-2025-69720 低危 6.3-2ubuntu0.1 6.3-2ubuntu0.2 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-bin CVE-2023-50495 低危 6.3-2ubuntu0.1 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

ncurses-bin CVE-2025-69720 低危 6.3-2ubuntu0.1 6.3-2ubuntu0.2 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libcurl4 CVE-2026-4873 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: curl: Information disclosure due to incorrect TLS connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4873

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:57

libcurl4 CVE-2026-5773 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Wrong file transfer due to incorrect SMB connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5773

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 10:59

libcurl4 CVE-2026-6276 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.24 curl: libcurl: Information disclosure due to cookie leak when reusing connections with custom Host headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6276

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-05-13 13:01 修改: 2026-06-17 11:00

libcurl4 CVE-2026-8286 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Insecure connection establishment due to TLS configuration mismatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8286

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 19:42

libgnutls30 CVE-2025-9820 低危 3.7.3-4ubuntu1.5 3.7.3-4ubuntu1.8 gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9820

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2026-01-26 20:16 修改: 2026-06-30 09:16

libcurl4 CVE-2026-8458 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 libcurl might in some circumstances reuse the wrong connection when as ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12

openssl CVE-2024-13176 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.19 openssl: Timing side-channel in ECDSA signature computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13176

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-01-20 14:15 修改: 2026-06-17 07:01

openssl CVE-2024-9143 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.19 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2024-10-16 17:15 修改: 2026-06-17 08:24

openssl CVE-2025-68160 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58

openssl CVE-2025-69418 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

openssl CVE-2025-69419 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

openssl CVE-2025-69420 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

openssl CVE-2025-69421 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

openssl CVE-2026-22795 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

openssl CVE-2026-22796 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.21 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

openssl CVE-2026-28387 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

openssl CVE-2026-28388 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

openssl CVE-2026-28389 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

openssl CVE-2026-28390 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

openssl CVE-2026-31789 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.23 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

openssl CVE-2026-34180 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34180

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:38

openssl CVE-2026-42766 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Possible NULL Dereference in Password-Based CMS Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42766

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42767 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42767

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-42770 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: FFC-DH Peer Validation Uses Attacker-Supplied q

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42770

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:48

openssl CVE-2026-45446 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45446

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 10:52

openssl CVE-2026-7383 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7383

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:02

openssl CVE-2026-9076 低危 3.0.2-0ubuntu1.18 3.0.2-0ubuntu1.25 openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9076

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-06-09 17:17 修改: 2026-06-17 11:04

libcurl4 CVE-2026-8924 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Cookie injection via malicious HTTP server using super cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06

libcurl4 CVE-2026-9547 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Man-in-the-middle attack via SSH host key bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52

passwd CVE-2023-29383 低危 1:4.8.1-2ubuntu2.2 shadow: Improper input validation in shadow-utils package utility chfn

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2023-04-14 22:15 修改: 2026-06-17 05:49

passwd CVE-2024-56433 低危 1:4.8.1-2ubuntu2.2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

libgssapi-krb5-2 CVE-2024-26458 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libgssapi-krb5-2 CVE-2024-26461 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

curl CVE-2026-8458 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 libcurl might in some circumstances reuse the wrong connection when as ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8458

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:12

curl CVE-2026-8924 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Cookie injection via malicious HTTP server using super cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8924

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 23:06

curl CVE-2026-9547 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.25 curl: curl: Man-in-the-middle attack via SSH host key bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9547

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-07-03 07:16 修改: 2026-07-07 14:52

libk5crypto3 CVE-2024-26458 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libk5crypto3 CVE-2024-26461 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

curl CVE-2025-0167 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.23 When asked to use a `.netrc` file for credentials **and** to follow HT ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-0167

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-02-05 10:15 修改: 2026-06-17 08:25

curl CVE-2025-14524 低危 7.81.0-1ubuntu1.20 7.81.0-1ubuntu1.22 curl: Information disclosure via cross-protocol redirect with OAuth2 bearer token

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14524

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2026-01-08 10:15 修改: 2026-06-17 08:36

libgcc-s1 CVE-2022-27943 低危 12.3.0-1ubuntu1~22.04 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

libkrb5-3 CVE-2024-26458 低危 1.19.2-2ubuntu0.4 1.19.2-2ubuntu0.6 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:59b223680ef978509f20faf6bf069866dfc02c422159347face0a7565d698526

发布日期: 2024-02-29 01:44 修改: 2026-06-17 07:17

libssh-4 CVE-2025-8114 低危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.5 libssh: NULL Pointer Dereference in libssh KEX Session ID Calculation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8114

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-07-24 15:15 修改: 2026-06-30 02:16

libssh-4 CVE-2025-8277 低危 0.9.6-2ubuntu0.22.04.3 0.9.6-2ubuntu0.22.04.6 libssh: Memory Exhaustion via Repeated Key Exchange in libssh

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8277

镜像层: sha256:1ffc802d0c5dece9db8d3bc4b518fb46a06210078a58078e54d95c1356e3f1b3

发布日期: 2025-09-09 12:15 修改: 2026-06-30 09:16

Java (jar)
低危漏洞:0 中危漏洞:4 高危漏洞:2 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
org.apache.flink:flink-table-planner_2.12 CVE-2026-35194 高危 1.20.0 1.20.4, 2.0.2, 2.1.2, 2.2.1 Apache Flink: Remote code execution via SQL injection in code generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35194

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2026-05-15 16:16 修改: 2026-06-17 10:40

org.apache.flink:flink-table-runtime CVE-2026-35194 高危 1.20.0 1.20.4, 2.0.2, 2.1.2, 2.2.1 Apache Flink: Remote code execution via SQL injection in code generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35194

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2026-05-15 16:16 修改: 2026-06-17 10:40

org.apache.logging.log4j:log4j-1.2-api CVE-2026-34479 中危 2.17.1 2.25.4 org.apache.logging.log4j/log4j-1.2-api: Apache Log4j 1-to-Log4j 2 bridge: Log processing denial of service due to improper XML escaping

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34479

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39

org.apache.logging.log4j:log4j-core CVE-2025-68161 中危 2.17.1 2.25.3 Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2025-12-18 21:15 修改: 2026-06-17 09:58

org.apache.logging.log4j:log4j-core CVE-2026-34477 中危 2.17.1 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39

org.apache.logging.log4j:log4j-core CVE-2026-34480 中危 2.17.1 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480

镜像层: sha256:2790f6ef2ceb4d3a1c61cf0af407c9ba7ec92210a7ff198513e2b7737956ff55

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×