| bind-export-libs |
CVE-2024-11187 |
高危 |
32:9.11.4-26.0.1.P2.el7_9.16 |
32:9.11.4-26.0.3.P2.el7_9.16 |
bind: bind9: Many records in the additional section cause CPU exhaustion
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11187
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-01-29 22:15 修改: 2026-04-15 00:35
|
| bind-export-libs |
CVE-2025-40778 |
高危 |
32:9.11.4-26.0.1.P2.el7_9.16 |
32:9.11.4-26.0.5.P2.el7_9.16 |
bind: Cache poisoning attacks with unsolicited RRs
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-40778
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-10-22 16:15 修改: 2026-04-15 00:35
|
| bind-export-libs |
CVE-2026-1519 |
高危 |
32:9.11.4-26.0.1.P2.el7_9.16 |
32:9.11.4-26.0.7.P2.el7_9.16 |
bind: BIND: Denial of Service via maliciously crafted DNSSEC-validated zone
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-1519
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-03-25 14:16 修改: 2026-05-21 15:24
|
| gnupg2 |
CVE-2025-68973 |
高危 |
2.0.22-5.el7_5 |
2.0.22-5.0.1.el7_5 |
GnuPG: GnuPG: Information disclosure and potential arbitrary code execution via out-of-bounds write
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68973
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-12-28 17:16 修改: 2026-01-14 19:16
|
| libxml2 |
CVE-2024-56171 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.5.el7_9.6 |
libxml2: Use-After-Free in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56171
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-02-18 22:15 修改: 2025-11-03 21:17
|
| libxml2 |
CVE-2025-24928 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.5.el7_9.6 |
libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24928
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
|
| libxml2 |
CVE-2025-49794 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml: Heap use after free (UAF) leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
|
| libxml2 |
CVE-2025-49796 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml: Type confusion leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
|
| libxml2 |
CVE-2025-6021 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-12 13:15 修改: 2026-05-12 13:17
|
| libxml2 |
CVE-2025-7425 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.9.el7_9.6 |
libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-07-10 14:15 修改: 2026-05-12 13:17
|
| libxml2-python |
CVE-2024-56171 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.5.el7_9.6 |
libxml2: Use-After-Free in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56171
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-02-18 22:15 修改: 2025-11-03 21:17
|
| libxml2-python |
CVE-2025-24928 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.5.el7_9.6 |
libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24928
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-02-18 23:15 修改: 2025-11-03 22:18
|
| libxml2-python |
CVE-2025-49794 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml: Heap use after free (UAF) leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
|
| libxml2-python |
CVE-2025-49796 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml: Type confusion leads to Denial of service (DoS)
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-16 16:15 修改: 2026-06-02 14:16
|
| libxml2-python |
CVE-2025-6021 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-12 13:15 修改: 2026-05-12 13:17
|
| libxml2-python |
CVE-2025-7425 |
高危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.9.el7_9.6 |
libxslt: libxml2: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7425
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-07-10 14:15 修改: 2026-05-12 13:17
|
| pam |
CVE-2025-6020 |
高危 |
1.1.8-23.0.1.el7 |
1.1.8-23.0.3.el7 |
linux-pam: Linux-pam directory Traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6020
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-06-17 13:15 修改: 2026-05-12 13:17
|
| python |
CVE-2026-4519 |
高危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.7.el7_9 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
|
| python-libs |
CVE-2026-4519 |
高危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.7.el7_9 |
python: Python: Command-line option injection in webbrowser.open() via crafted URLs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4519
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-03-20 15:16 修改: 2026-04-16 14:53
|
| sqlite |
CVE-2025-6965 |
高危 |
3.7.17-8.el7_7.1 |
3.7.17-8.0.1.el7_9.1 |
sqlite: Integer Truncation in SQLite
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6965
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-07-15 14:15 修改: 2026-04-14 10:16
|
| vim-minimal |
CVE-2026-25749 |
高危 |
2:7.4.629-8.0.1.el7_9 |
2:7.4.629-8.0.3.el7_9 |
vim: Vim: Arbitrary code execution via 'helpfile' option processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25749
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-02-06 23:15 修改: 2026-06-09 18:28
|
| vim-minimal |
CVE-2026-28417 |
高危 |
2:7.4.629-8.0.1.el7_9 |
2:7.4.629-8.0.3.el7_9 |
vim: Vim: Arbitrary code execution via OS command injection in the netrw plugin
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28417
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-02-27 22:16 修改: 2026-03-03 17:50
|
| vim-minimal |
CVE-2026-28421 |
高危 |
2:7.4.629-8.0.1.el7_9 |
2:7.4.629-8.0.3.el7_9 |
vim: Vim: Denial of service and information disclosure via crafted swap file
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28421
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-02-27 22:16 修改: 2026-03-04 20:47
|
| vim-minimal |
CVE-2026-33412 |
高危 |
2:7.4.629-8.0.1.el7_9 |
2:7.4.629-8.0.3.el7_9 |
vim: Vim: Arbitrary code execution via command injection in glob() function
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33412
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-03-24 20:16 修改: 2026-03-25 21:59
|
| libxml2-python |
CVE-2025-32414 |
中危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml2: Out-of-Bounds Read in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-04-08 03:15 修改: 2025-11-03 20:18
|
| libxml2-python |
CVE-2025-32415 |
中危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.11.el7_9.6 |
libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-04-17 17:15 修改: 2025-11-03 20:18
|
| openssl-libs |
CVE-2025-9230 |
中危 |
1:1.0.2k-26.el7_9 |
1:1.0.2k-26.0.1.el7_9 |
openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-09-30 14:15 修改: 2026-06-02 14:16
|
| libxml2 |
CVE-2025-32414 |
中危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.7.el7_9.6 |
libxml2: Out-of-Bounds Read in libxml2
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-04-08 03:15 修改: 2025-11-03 20:18
|
| libxml2 |
CVE-2025-32415 |
中危 |
2.9.1-6.0.3.el7_9.6 |
2.9.1-6.0.11.el7_9.6 |
libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-04-17 17:15 修改: 2025-11-03 20:18
|
| python |
CVE-2025-12084 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.3.el7_9 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
|
| python |
CVE-2025-15366 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.5.el7_9 |
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python |
CVE-2025-15367 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.5.el7_9 |
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| glibc |
CVE-2025-4802 |
中危 |
2.17-326.0.9.el7_9.3 |
2.17-326.0.11.el7_9.3 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
|
| python-libs |
CVE-2025-12084 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.3.el7_9 |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12084
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-12-03 19:15 修改: 2026-01-26 15:16
|
| python-libs |
CVE-2025-15366 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.5.el7_9 |
cpython: IMAP command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15366
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| python-libs |
CVE-2025-15367 |
中危 |
2.7.5-94.0.1.el7_9 |
2.7.5-94.0.5.el7_9 |
cpython: POP3 command injection in user-controlled commands
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15367
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-01-20 22:15 修改: 2026-04-15 00:35
|
| glibc-common |
CVE-2025-4802 |
中危 |
2.17-326.0.9.el7_9.3 |
2.17-326.0.11.el7_9.3 |
glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4802
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-05-16 20:15 修改: 2025-11-03 20:19
|
| glib2 |
CVE-2025-13601 |
中危 |
2.56.1-9.el7_9 |
2.56.1-9.0.3.el7_9 |
glib: Integer overflow in in g_escape_uri_string()
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13601
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2025-11-26 15:15 修改: 2026-06-02 14:16
|
| krb5-libs |
CVE-2025-24528 |
中危 |
1.15.1-55.0.7.el7_9 |
1.15.1-55.0.9.el7_9 |
krb5: overflow when calculating ulog block size
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-24528
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2026-01-16 18:16 修改: 2026-04-15 00:35
|
| libgcc |
CVE-2020-11023 |
中危 |
4.8.5-44.0.3.el7 |
4.8.5-45.0.1.el7_9 |
jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11023
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2020-04-29 21:15 修改: 2025-11-07 19:32
|
| libstdc++ |
CVE-2020-11023 |
中危 |
4.8.5-44.0.3.el7 |
4.8.5-45.0.1.el7_9 |
jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods
漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11023
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2020-04-29 21:15 修改: 2025-11-07 19:32
|
| zlib |
CVE-2016-9840 |
低危 |
1.2.7-21.el7_9 |
1.2.7-21.0.1.el7_9 |
zlib: Out-of-bound pointer arithmetic in inftrees.c
漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9840
镜像层: sha256:5c85b20729cba303ef9f7276460886b6201156e06956c1c16c937e09a7370968
发布日期: 2017-05-23 04:29 修改: 2026-05-13 00:24
|