| bsdutils |
CVE-2026-27456 |
中危 |
1:2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| curl |
CVE-2026-11856 |
中危 |
8.5.0-2ubuntu10.10 |
|
Successfully using libcurl to do a transfer to a specific HTTP origin ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| libblkid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libc-bin |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc-bin |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc-bin |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc-bin |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libc6 |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| libc6 |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| libc6 |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| libc6 |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| libcurl4t64 |
CVE-2026-11856 |
中危 |
8.5.0-2ubuntu10.10 |
|
Successfully using libcurl to do a transfer to a specific HTTP origin ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-11856
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| libexpat1 |
CVE-2025-66382 |
中危 |
2.6.1-2ubuntu0.4 |
|
libexpat: libexpat: Denial of service via crafted file processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66382
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2025-11-28 07:15 修改: 2026-06-17 09:56
|
| libmount1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libnghttp2-14 |
CVE-2026-58055 |
中危 |
1.59.0-1ubuntu0.3 |
1.59.0-1ubuntu0.4 |
nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade re ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-58055
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-06-28 02:16 修改: 2026-06-30 17:41
|
| libp11-kit0 |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-06-29 19:16 修改: 2026-07-01 15:16
|
| libsmartcols1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| libuuid1 |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| locales |
CVE-2026-4046 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Denial of Service via iconv() function with specific character sets
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55
|
| locales |
CVE-2026-4437 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Incorrect DNS response parsing via crafted DNS server response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| locales |
CVE-2026-4438 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56
|
| locales |
CVE-2026-5435 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Out-of-bounds write via TSIG record processing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59
|
| locales |
CVE-2026-6238 |
中危 |
2.39-0ubuntu8.7 |
|
glibc: glibc: Application crash or uninitialized memory read via crafted DNS response
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17
|
| mount |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| p11-kit |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-06-29 19:16 修改: 2026-07-01 15:16
|
| p11-kit-modules |
CVE-2026-13757 |
中危 |
0.25.3-4ubuntu2.1 |
|
p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-06-29 19:16 修改: 2026-07-01 15:16
|
| perl-base |
CVE-2026-42496 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19
|
| perl-base |
CVE-2026-8376 |
中危 |
5.38.2-3.2ubuntu0.2 |
5.38.2-3.2ubuntu0.3 |
perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03
|
| tar |
CVE-2025-45582 |
中危 |
1.35+dfsg-3build1 |
|
tar: Tar path traversal
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-45582
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2025-07-11 17:15 修改: 2026-06-17 09:25
|
| tar |
CVE-2026-5704 |
中危 |
1.35+dfsg-3build1 |
1.35+dfsg-3ubuntu0.1 |
tar: tar: Hidden file injection via crafted archives
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59
|
| util-linux |
CVE-2026-27456 |
中危 |
2.39.3-9ubuntu6.5 |
|
util-linux: TOCTOU in the mount program when setting up loop devices
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27
|
| wget |
CVE-2021-31879 |
中危 |
1.21.4-1ubuntu4.1 |
|
wget: authorization header disclosure on redirect
漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2021-04-29 05:15 修改: 2026-06-17 03:52
|
| login |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libsystemd0 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| ncurses-base |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| ncurses-bin |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libtinfo6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libudev1 |
CVE-2026-40228 |
低危 |
255.4-1ubuntu8.16 |
|
systemd: systemd-journald: Unintended output to user terminals via logger command
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44
|
| passwd |
CVE-2024-56433 |
低危 |
1:4.13+dfsg1-4ubuntu3.2 |
|
shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12
|
| libgcrypt20 |
CVE-2024-2236 |
低危 |
1.10.3-2ubuntu0.1 |
|
libgcrypt: vulnerable to Marvin Attack
漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24
|
| curl |
CVE-2026-12064 |
低危 |
8.5.0-2ubuntu10.10 |
|
When a user invokes curl using a schemeless URL combined with `--proto ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| libncursesw6 |
CVE-2025-69720 |
低危 |
6.4+20240113-1ubuntu2 |
6.4+20240113-1ubuntu2.1 |
ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00
|
| libcurl4t64 |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
A use-after-free vulnerability exists in libcurl when an application c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| libcurl4t64 |
CVE-2026-12064 |
低危 |
8.5.0-2ubuntu10.10 |
|
When a user invokes curl using a schemeless URL combined with `--proto ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12064
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| curl |
CVE-2026-10536 |
低危 |
8.5.0-2ubuntu10.10 |
|
A use-after-free vulnerability exists in libcurl when an application c ...
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-10536
镜像层: sha256:d6894159ffd8a85f9292f0cd878718fce981fe205716b57ebed5a0379f59b479
发布日期: 2026-07-03 07:16 修改: 2026-07-03 07:16
|
| zlib1g |
CVE-2026-27171 |
低危 |
1:1.3.dfsg-3.1ubuntu2.1 |
|
zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171
镜像层: sha256:f103cd120fdd6cbc7f3d0e1d5bfb3e16290c32ead7b822d15c34460ecdf64b29
发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26
|