docker.io/linuxserver/jellyfin:10.10.5 linux/amd64

docker.io/linuxserver/jellyfin:10.10.5 - Trivy安全扫描结果扫描时间: 2025-01-26 12:04

全部漏洞信息

低危漏洞:31

中危漏洞:20

高危漏洞:0

严重漏洞:0

系统OS: ubuntu 24.04 扫描引擎: Trivy 扫描时间: 2025-01-26 12:04

docker.io/linuxserver/jellyfin:10.10.5 (ubuntu 24.04) (ubuntu)

低危漏洞:31

中危漏洞:19

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	漏洞信息
krb5-locales	CVE-2024-26462	中危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libfreetype6	CVE-2025-23022	中危	2.13.2+dfsg-1build3	freetype: signed integer overflow in cf2_doFlex 漏洞详情: https://avd.aquasec.com/nvd/cve-2025-23022 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2025-01-10 15:15 修改: 2025-01-16 21:12
libgssapi-krb5-2	CVE-2024-26462	中危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26462	中危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26462	中危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5support0	CVE-2024-26462	中危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/kdc/ndr.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libopenmpt0t64	CVE-2019-17113	中危	0.7.3-1.1build3	In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_Instrument ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17113 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2019-10-04 00:15 修改: 2020-08-02 01:15
libpam-modules	CVE-2024-10041	中危	1.5.3-5ubuntu5.1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules	CVE-2024-10963	中危	1.5.3-5ubuntu5.1	pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin	CVE-2024-10041	中危	1.5.3-5ubuntu5.1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-modules-bin	CVE-2024-10963	中危	1.5.3-5ubuntu5.1	pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime	CVE-2024-10041	中危	1.5.3-5ubuntu5.1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam-runtime	CVE-2024-10963	中危	1.5.3-5ubuntu5.1	pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g	CVE-2024-10041	中危	1.5.3-5ubuntu5.1	pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-10-23 14:15 修改: 2024-12-18 10:15
libpam0g	CVE-2024-10963	中危	1.5.3-5ubuntu5.1	pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpixman-1-0	CVE-2023-37769	中危	0.42.2-1build1	stress-test master commit e4c878 was discovered to contain a FPE vulne ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37769 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2023-07-17 20:15 修改: 2023-07-28 13:22
libtheora0	CVE-2024-56431	中危	1.1.1+dfsg.1-16.1build3	libtheora: incorrect bitwise shift in huffdec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56431 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2024-12-25 17:15 修改: 2024-12-31 19:15
login	CVE-2024-56433	中危	1:4.13+dfsg1-4ubuntu3.2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
passwd	CVE-2024-56433	中危	1:4.13+dfsg1-4ubuntu3.2	shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-12-26 09:15 修改: 2024-12-26 09:15
libcairo2	CVE-2019-6461	低危	1.18.0-3build1	cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
dirmngr	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgcrypt20	CVE-2024-2236	低危	1.10.3-2build1	libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
gnupg	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libgssapi-krb5-2	CVE-2024-26458	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libgssapi-krb5-2	CVE-2024-26461	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gnupg-l10n	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libk5crypto3	CVE-2024-26458	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libk5crypto3	CVE-2024-26461	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gnupg-utils	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5-3	CVE-2024-26458	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5-3	CVE-2024-26461	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libkrb5support0	CVE-2024-26458	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
libkrb5support0	CVE-2024-26461	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
gpg-agent	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpg-wks-client	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgconf	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgsm	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgv	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
keyboxd	CVE-2022-3219	低危	2.4.4-2ubuntu17	gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
coreutils	CVE-2016-2781	低危	9.4-3ubuntu6	coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
krb5-locales	CVE-2024-26458	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-12-06 21:15
krb5-locales	CVE-2024-26461	低危	1.20.1-6ubuntu2.2	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin	CVE-2016-20013	低危	2.39-0ubuntu8.3	漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libssl3t64	CVE-2024-41996	低危	3.0.13-0ubuntu3.4	openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libc6	CVE-2016-20013	低危	2.39-0ubuntu8.3	漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:ce58c7c237053735d0405e4a912cbe4d6699e9dbcf610554c6030dea98e2db9e 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
locales	CVE-2016-20013	低危	2.39-0ubuntu8.3	漏洞详情: https://avd.aquasec.com/nvd/cve-2016-20013 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2022-02-19 05:15 修改: 2022-03-03 16:43
libcairo2	CVE-2017-7475	低危	1.18.0-3build1	cairo: NULL pointer dereference with a crafted font file 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
openssl	CVE-2024-41996	低危	3.0.13-0ubuntu3.4	openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996 镜像层: sha256:c8adc6609b8c961108f94a8af79d4d41337a1a17764c6e39cd08f920a20cf70a 发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35
libcairo2	CVE-2018-18064	低危	1.18.0-3build1	cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54

usr/lib/jellyfin/bin/jellyfin.deps.json (dotnet-core)

低危漏洞:0

中危漏洞:1

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
Swashbuckle.AspNetCore.SwaggerUI	GHSA-qrmm-w75w-3wpx	中危	6.2.3	6.3.0	Server side request forgery in SwaggerUI 漏洞详情: https://github.com/advisories/GHSA-qrmm-w75w-3wpx 镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

Swashbuckle.AspNetCore.SwaggerUI

GHSA-qrmm-w75w-3wpx

中危

6.2.3

6.3.0

Server side request forgery in SwaggerUI

漏洞详情: https://github.com/advisories/GHSA-qrmm-w75w-3wpx

镜像层: sha256:f1694cda9248d7dd85a426df6266d1f3b9a6aeeb529df7da08b13c5a3b7b1c56

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00