docker.io/logstash:7.6.1 linux/amd64

docker.io/logstash:7.6.1 - Trivy安全扫描结果 扫描时间: 2024-12-10 11:14
全部漏洞信息
低危漏洞:714 中危漏洞:987 高危漏洞:258 严重漏洞:27

系统OS: centos 7.7.1908 扫描引擎: Trivy 扫描时间: 2024-12-10 11:14

docker.io/logstash:7.6.1 (centos 7.7.1908) (centos)
低危漏洞:706 中危漏洞:919 高危漏洞:95 严重漏洞:3
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
nss CVE-2021-43527 严重 3.44.0-7.el7_7 3.67.0-4.el7_9 nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43527

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-12-08 22:15 修改: 2023-02-23 01:40

nss-sysinit CVE-2021-43527 严重 3.44.0-7.el7_7 3.67.0-4.el7_9 nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43527

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-12-08 22:15 修改: 2023-02-23 01:40

nss-tools CVE-2021-43527 严重 3.44.0-7.el7_7 3.67.0-4.el7_9 nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43527

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-12-08 22:15 修改: 2023-02-23 01:40

bind-license CVE-2021-25215 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.5 bind: An assertion check can fail while answering queries for DNAME records that require the DNAME to be processed to resolve itself

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25215

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-29 01:15 修改: 2023-11-07 03:31

bind-license CVE-2022-38177 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.10 bind: memory leak in ECDSA DNSSEC verification code

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38177

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50

bind-license CVE-2022-38178 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.10 bind: memory leaks in EdDSA DNSSEC verification code

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38178

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:50

bind-license CVE-2023-2828 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.14 bind: named's configured cache size limit can be significantly exceeded

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2828

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-06-21 17:15 修改: 2023-07-21 19:19

bind-license CVE-2023-3341 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.15 bind: stack exhaustion in control channel code may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3341

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-20 13:15 修改: 2024-02-16 18:39

bind-license CVE-2023-4408 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.16 bind9: Parsing large DNS messages may cause excessive CPU load

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4408

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-13 14:15 修改: 2024-10-21 21:02

bind-license CVE-2023-50387 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.16 bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16

bind-license CVE-2023-50868 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.16 bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16

bind-license CVE-2024-1737 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.17 bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1737

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46

bind-license CVE-2024-1975 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.17 bind9: bind: SIG(0) can be used to exhaust CPU resources

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-1975

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-07-23 15:15 修改: 2024-08-01 13:46

cups-libs CVE-2023-32360 高危 1:1.6.3-40.el7 1:1.6.3-52.el7_9 cups: Information leak through Cups-Get-Document operation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32360

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-23 18:15 修改: 2023-09-30 20:15

cyrus-sasl-lib CVE-2022-24407 高危 2.1.26-23.el7 2.1.26-24.el7_9 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44

dbus CVE-2020-12049 高危 1:1.10.24-13.el7_6 1:1.10.24-14.el7_8 dbus: denial of service via file descriptor leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-06-08 17:15 修改: 2023-06-12 07:15

dbus-libs CVE-2020-12049 高危 1:1.10.24-13.el7_6 1:1.10.24-14.el7_8 dbus: denial of service via file descriptor leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-06-08 17:15 修改: 2023-06-12 07:15

expat CVE-2022-25235 高危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25235

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44

expat CVE-2022-25236 高危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25236

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44

expat CVE-2022-25315 高危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in storeRawNames()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25315

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44

expat CVE-2022-40674 高危 2.1.0-10.el7_3 2.1.0-15.el7_9 expat: a use-after-free in the doContent function in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52

freetype CVE-2020-15999 高危 2.8-14.el7 2.8-14.el7_9.1 freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15999

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-11-03 03:15 修改: 2024-07-25 17:25

glib2 CVE-2021-27219 高危 2.56.1-5.el7 2.56.1-9.el7_9 glib: integer overflow in g_bytes_new function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27219

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31

glibc CVE-2024-2961 高危 2.17-292.el7 2.17-326.el7_9.3 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15

glibc CVE-2024-33599 高危 2.17-292.el7 2.17-326.el7_9.3 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

glibc-common CVE-2024-2961 高危 2.17-292.el7 2.17-326.el7_9.3 glibc: Out of bounds write in iconv may lead to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15

glibc-common CVE-2024-33599 高危 2.17-292.el7 2.17-326.el7_9.3 glibc: stack-based buffer overflow in netgroup cache

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

gzip CVE-2022-1271 高危 1.5-10.el7 1.5-11.el7_9 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47

java-11-openjdk CVE-2020-14583 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14593 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-2803 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2805 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2816 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Application data accepted before TLS handshake completion (JSSE, 8235691)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2816

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-06-30 20:02

java-11-openjdk CVE-2021-2388 高危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00

java-11-openjdk CVE-2021-35565 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2021-35567 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk CVE-2022-21476 高危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03

java-11-openjdk CVE-2022-34169 高危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-21930 高危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2024-20918 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18

java-11-openjdk CVE-2024-20952 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35

java-11-openjdk CVE-2024-21147 高危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49

java-11-openjdk-devel CVE-2020-14583 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14593 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-2803 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2805 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2816 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Application data accepted before TLS handshake completion (JSSE, 8235691)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2816

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-06-30 20:02

java-11-openjdk-devel CVE-2021-2388 高危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00

java-11-openjdk-devel CVE-2021-35565 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2021-35567 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk-devel CVE-2022-21476 高危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03

java-11-openjdk-devel CVE-2022-34169 高危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-21930 高危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2024-20918 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18

java-11-openjdk-devel CVE-2024-20952 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35

java-11-openjdk-devel CVE-2024-21147 高危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49

java-11-openjdk-headless CVE-2020-14583 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14593 高危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-2803 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2805 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2816 高危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Application data accepted before TLS handshake completion (JSSE, 8235691)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2816

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-06-30 20:02

java-11-openjdk-headless CVE-2021-2388 高危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00

java-11-openjdk-headless CVE-2021-35565 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2021-35567 高危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk-headless CVE-2022-21476 高危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03

java-11-openjdk-headless CVE-2022-34169 高危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-21930 高危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: improper connection handling during TLS handshake (8294474)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21930

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2024-20918 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: array out-of-bounds access due to missing range check in C1 compiler (8314468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20918

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-15 03:18

java-11-openjdk-headless CVE-2024-20952 高危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: RSA padding issue and timing side-channel attack against TLS (8317547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20952

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-08-30 16:35

java-11-openjdk-headless CVE-2024-21147 高危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: RangeCheckElimination array index overflow (8323231)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21147

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-13 00:49

krb5-libs CVE-2022-42898 高危 1.15.1-37.el7_7.2 1.15.1-55.el7_9 krb5: integer overflow vulnerabilities in PAC parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42898

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-12-25 06:15 修改: 2023-10-08 09:15

krb5-libs CVE-2024-3596 高危 1.15.1-37.el7_7.2 1.15.1-55.el7_9.3 freeradius: forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-07-09 12:15 修改: 2024-07-23 09:15

libX11 CVE-2020-14363 高危 1.6.7-2.el7 1.6.7-3.el7_9 libX11: integer overflow leads to double free in locale handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17

libX11 CVE-2021-31535 高危 1.6.7-2.el7 1.6.7-4.el7_9 libX11: missing request length checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34

libX11-common CVE-2020-14363 高危 1.6.7-2.el7 1.6.7-3.el7_9 libX11: integer overflow leads to double free in locale handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17

libX11-common CVE-2021-31535 高危 1.6.7-2.el7 1.6.7-4.el7_9 libX11: missing request length checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34

bind-license CVE-2020-8616 高危 32:9.11.4-9.P2.el7 32:9.11.4-16.P2.el7_8.6 bind: BIND does not sufficiently limit the number of fetches performed when processing referrals

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8616

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-05-19 14:15 修改: 2023-11-07 03:26

nss CVE-2014-3566 高危 3.44.0-7.el7_7 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3566

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2014-10-15 00:55 修改: 2023-09-12 14:55

nss CVE-2023-0767 高危 3.44.0-7.el7_7 3.79.0-5.el7_9 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45

bind-license CVE-2020-8617 高危 32:9.11.4-9.P2.el7 32:9.11.4-16.P2.el7_8.6 bind: A logic error in code which checks TSIG validity can be used to trigger an assertion failure in tsig.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8617

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-05-19 14:15 修改: 2023-11-07 03:26

nss-sysinit CVE-2014-3566 高危 3.44.0-7.el7_7 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3566

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2014-10-15 00:55 修改: 2023-09-12 14:55

nss-sysinit CVE-2023-0767 高危 3.44.0-7.el7_7 3.79.0-5.el7_9 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45

bind-license CVE-2020-8625 高危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.4 bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8625

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-17 23:15 修改: 2023-11-07 03:26

nss-tools CVE-2014-3566 高危 3.44.0-7.el7_7 SSL/TLS: Padding Oracle On Downgraded Legacy Encryption attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3566

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2014-10-15 00:55 修改: 2023-09-12 14:55

nss-tools CVE-2023-0767 高危 3.44.0-7.el7_7 3.79.0-5.el7_9 nss: Arbitrary memory write via PKCS 12

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-02 17:15 修改: 2023-08-02 16:45

openssl-libs CVE-2020-1971 高危 1:1.0.2k-19.el7 1:1.0.2k-21.el7_9 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15

openssl-libs CVE-2022-0778 高危 1:1.0.2k-19.el7 1:1.0.2k-25.el7_9 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15

openssl-libs CVE-2023-0286 高危 1:1.0.2k-19.el7 1:1.0.2k-26.el7_9 openssl: X.400 address type confusion in X.509 GeneralName

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

pam CVE-2024-10963 高危 1.1.8-22.el7 pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15

python CVE-2023-24329 高危 2.7.5-86.el7 2.7.5-93.el7_9 python: urllib.parse url blocklisting bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08

python CVE-2023-40217 高危 2.7.5-86.el7 2.7.5-94.el7_9 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20

python-libs CVE-2023-24329 高危 2.7.5-86.el7 2.7.5-93.el7_9 python: urllib.parse url blocklisting bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08

python-libs CVE-2023-40217 高危 2.7.5-86.el7 2.7.5-94.el7_9 python: TLS handshake bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20

systemd CVE-2022-2526 高危 219-67.el7_7.3 219-78.el7_9.7 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17

systemd-libs CVE-2022-2526 高危 219-67.el7_7.3 219-78.el7_9.7 systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2526

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-09 15:15 修改: 2023-01-20 03:17

xz CVE-2022-1271 高危 5.2.2-1.el7 5.2.2-2.el7_9 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47

xz-libs CVE-2022-1271 高危 5.2.2-1.el7 5.2.2-2.el7_9 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47

zlib CVE-2018-25032 高危 1.2.7-18.el7 1.2.7-20.el7_9 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56

dbus CVE-2014-3477 中危 1:1.10.24-13.el7_6 dbus: denial of service flaw in dbus-daemon

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3477

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-01 17:55 修改: 2023-12-27 16:36

dbus CVE-2014-3532 中危 1:1.10.24-13.el7_6 dbus: denial of service in file descriptor passing feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3532

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-19 19:55 修改: 2023-12-27 16:36

dbus CVE-2014-3533 中危 1:1.10.24-13.el7_6 dbus: denial of service when forwarding invalid file descriptors

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3533

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-19 19:55 修改: 2023-12-27 16:36

dbus CVE-2019-12749 中危 1:1.10.24-13.el7_6 1:1.10.24-15.el7 dbus: DBusServer DBUS_COOKIE_SHA1 authentication bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12749

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-11 17:29 修改: 2023-11-07 03:03

dbus CVE-2022-42010 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus CVE-2022-42011 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus CVE-2022-42012 中危 1:1.10.24-13.el7_6 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus CVE-2023-34969 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36

avahi-libs CVE-2023-38470 中危 0.6.31-19.el7 avahi: Reachable assertion in avahi_escape_label

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38470

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58

dbus-libs CVE-2014-3477 中危 1:1.10.24-13.el7_6 dbus: denial of service flaw in dbus-daemon

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3477

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-01 17:55 修改: 2023-12-27 16:36

dbus-libs CVE-2014-3532 中危 1:1.10.24-13.el7_6 dbus: denial of service in file descriptor passing feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3532

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-19 19:55 修改: 2023-12-27 16:36

dbus-libs CVE-2014-3533 中危 1:1.10.24-13.el7_6 dbus: denial of service when forwarding invalid file descriptors

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3533

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-07-19 19:55 修改: 2023-12-27 16:36

dbus-libs CVE-2019-12749 中危 1:1.10.24-13.el7_6 1:1.10.24-15.el7 dbus: DBusServer DBUS_COOKIE_SHA1 authentication bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12749

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-11 17:29 修改: 2023-11-07 03:03

dbus-libs CVE-2022-42010 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon crashes when receiving message with incorrectly nested parentheses and curly brackets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42010

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus-libs CVE-2022-42011 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon can be crashed by messages with array length inconsistent with element type

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42011

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus-libs CVE-2022-42012 中危 1:1.10.24-13.el7_6 dbus: `_dbus_marshal_byteswap` doesn't process fds in messages with "foreign" endianness correctly

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42012

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-10 00:15 修改: 2023-12-27 16:49

dbus-libs CVE-2023-34969 中危 1:1.10.24-13.el7_6 dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34969

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-06-08 03:15 修改: 2023-12-27 16:36

dracut CVE-2016-4484 中危 033-564.el7 dracut: Brute force attack on LUKS password decryption via initramfs

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4484

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-01-23 21:59 修改: 2017-01-26 02:59

avahi-libs CVE-2023-38471 中危 0.6.31-19.el7 avahi: Reachable assertion in dbus_set_host_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38471

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58

avahi-libs CVE-2023-38472 中危 0.6.31-19.el7 avahi: Reachable assertion in avahi_rdata_parse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38472

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58

avahi-libs CVE-2023-38473 中危 0.6.31-19.el7 avahi: Reachable assertion in avahi_alternative_host_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38473

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-02 16:15 修改: 2023-11-09 17:46

bash CVE-2012-6711 中危 4.2.46-33.el7 bash: heap-based buffer overflow during echo of unsupported characters

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-6711

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-18 18:15 修改: 2023-11-07 02:13

expat CVE-2012-6702 中危 2.1.0-10.el7_3 expat: Using XML_Parse before rand() results into non-random output

漏洞详情: https://avd.aquasec.com/nvd/cve-2012-6702

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-16 18:59 修改: 2023-11-07 02:13

expat CVE-2013-0340 中危 2.1.0-10.el7_3 expat: internal entity expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0340

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-01-21 18:55 修改: 2023-11-07 02:13

expat CVE-2013-0341 中危 2.1.0-10.el7_3 expat: external entity expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0341

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2013-09-26 14:16 修改: 2023-11-07 02:13

expat CVE-2015-2716 中危 2.1.0-10.el7_3 2.1.0-11.el7 expat: Integer overflow leading to buffer overflow in XML_GetBuffer()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2716

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-05-14 10:59 修改: 2024-10-22 13:54

expat CVE-2016-4472 中危 2.1.0-10.el7_3 expat: Undefined behavior and pointer overflows

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4472

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-30 17:59 修改: 2023-11-07 02:32

expat CVE-2016-5300 中危 2.1.0-10.el7_3 expat: Little entropy used for hash initialization

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-5300

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-16 18:59 修改: 2023-11-07 02:33

expat CVE-2017-9233 中危 2.1.0-10.el7_3 expat: Inifinite loop due to invalid XML in external entity

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9233

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-25 20:29 修改: 2023-11-07 02:50

expat CVE-2018-20843 中危 2.1.0-10.el7_3 2.1.0-12.el7 expat: large number of colons in input makes parser consume high amount of resources, leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20843

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-24 17:15 修改: 2023-11-07 02:56

expat CVE-2021-45960 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Large number of prefixed XML attributes on a single tag can crash libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45960

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-01 19:15 修改: 2022-10-06 19:08

expat CVE-2021-46143 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in doProlog in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46143

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-06 04:15 修改: 2022-10-06 19:11

expat CVE-2022-22822 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in addBinding in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22822

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 15:29

expat CVE-2022-22823 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in build_model in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22823

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47

expat CVE-2022-22824 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in defineAttribute in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22824

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47

expat CVE-2022-22825 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in lookup in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22825

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47

expat CVE-2022-22826 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in nextScaffoldPart in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22826

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:44

expat CVE-2022-22827 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in storeAtts in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22827

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:52

expat CVE-2022-23852 中危 2.1.0-10.el7_3 2.1.0-14.el7_9 expat: Integer overflow in function XML_GetBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23852

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-24 02:15 修改: 2022-10-29 02:44

expat CVE-2022-23990 中危 2.1.0-10.el7_3 expat: integer overflow in the doProlog function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23990

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-26 19:15 修改: 2023-11-07 03:44

expat CVE-2022-25313 中危 2.1.0-10.el7_3 expat: Stack exhaustion in doctype parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44

expat CVE-2022-43680 中危 2.1.0-10.el7_3 expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08

expat CVE-2023-52425 中危 2.1.0-10.el7_3 expat: parsing large tokens can trigger a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35

expat CVE-2023-52426 中危 2.1.0-10.el7_3 expat: recursive XML entity expansion vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15

expat CVE-2024-45490 中危 2.1.0-10.el7_3 libexpat: Negative Length Parsing Vulnerability in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24

expat CVE-2024-45491 中危 2.1.0-10.el7_3 libexpat: Integer Overflow or Wraparound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28

expat CVE-2024-45492 中危 2.1.0-10.el7_3 libexpat: integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28

expat CVE-2024-50602 中危 2.1.0-10.el7_3 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35

bash CVE-2019-9924 中危 4.2.46-33.el7 4.2.46-34.el7 bash: BASH_CMD is writable in restricted bash shells

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9924

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-03-22 08:29 修改: 2022-04-05 20:11

freetype CVE-2016-10244 中危 2.8-14.el7 freetype: parse_charstrings function in type1/t1load.c does not ensure that a font contains a glyph name

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10244

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-06 06:59 修改: 2021-01-26 12:33

freetype CVE-2017-8105 中危 2.8-14.el7 freetype: heap-based buffer overflow related to the t1_decoder_parse_charstrings

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8105

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-24 18:59 修改: 2021-01-26 12:33

freetype CVE-2017-8287 中危 2.8-14.el7 freetype: heap-based buffer overflow related to the t1_builder_close_contour function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8287

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-27 00:59 修改: 2021-01-26 12:33

freetype CVE-2022-27404 中危 2.8-14.el7 FreeType: Buffer overflow in sfnt_init_face

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34

freetype CVE-2022-27405 中危 2.8-14.el7 FreeType: Segmentation violation via FNT_Size_Request

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34

freetype CVE-2022-27406 中危 2.8-14.el7 Freetype: Segmentation violation via FT_Request_Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34

giflib CVE-2015-7555 中危 4.1.6-9.el7 giflib: Heap-based buffer overflow in giffix utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-7555

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-04-13 15:59 修改: 2018-10-09 19:58

giflib CVE-2022-28506 中危 4.1.6-9.el7 giflib: buffer overflow in function DumpScreen2RGB()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-28506

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-25 13:15 修改: 2023-11-07 03:45

giflib CVE-2023-48161 中危 4.1.6-9.el7 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48

audit-libs CVE-2015-5186 中危 2.8.5-4.el7 Audit: log terminal emulator escape sequences handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5186

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-09-06 21:29 修改: 2017-09-13 11:17

glib2 CVE-2015-2327 中危 2.56.1-5.el7 pcre: infinite recursion compiling pattern with zero-repeated groups that include recursive back reference (8.36/19)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2327

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2018-01-05 02:30

glib2 CVE-2015-2328 中危 2.56.1-5.el7 pcre: infinite recursion compiling pattern with recursive reference in a group with indefinite repeat (8.36/20)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2328

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2019-12-27 16:08

glib2 CVE-2015-3217 中危 2.56.1-5.el7 pcre: stack overflow caused by mishandled group empty match (8.38/11)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-12-13 16:59 修改: 2018-05-18 01:29

glib2 CVE-2015-5073 中危 2.56.1-5.el7 pcre: buffer overflow for forward reference within backward assertion with excess closing parenthesis (8.38/18)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5073

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-12-13 16:59 修改: 2018-05-18 01:29

glib2 CVE-2015-8388 中危 2.56.1-5.el7 pcre: buffer overflow for forward reference within backward assertion with excess closing parenthesis (8.38/18)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8388

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2019-12-27 16:08

glib2 CVE-2015-8391 中危 2.56.1-5.el7 pcre: inefficient posix character class syntax check (8.38/16)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8391

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2023-02-16 14:15

glib2 CVE-2019-12450 中危 2.56.1-5.el7 2.56.1-7.el7 glib2: file_copy_fallback in gio/gfile.c in GNOME GLib does not properly restrict file permissions while a copy operation is in progress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12450

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-05-29 17:29 修改: 2023-11-07 03:03

glib2 CVE-2019-14822 中危 2.56.1-5.el7 2.56.1-7.el7 ibus: missing authorization allows local attacker to access the input bus of another user

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14822

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-25 12:15 修改: 2022-06-07 18:41

glib2 CVE-2021-27218 中危 2.56.1-5.el7 glib: integer overflow in g_byte_array_new_take function when called with a buffer of 4GB or more on a 64-bit platform

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27218

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31

glib2 CVE-2021-3800 中危 2.56.1-5.el7 glib2: Possible privilege escalation thourgh pkexec and aliases

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3800

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-23 16:15 修改: 2023-04-25 15:42

glib2 CVE-2024-34397 中危 2.56.1-5.el7 glib2: Signal subscription vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34397

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-07 18:15 修改: 2024-11-15 18:35

glib2 CVE-2024-52533 中危 2.56.1-5.el7 glib: buffer overflow in set_connect_msg()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52533

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-11-11 23:15 修改: 2024-11-23 21:15

avahi-libs CVE-2021-3468 中危 0.6.31-19.el7 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15

bind-license CVE-2019-6477 中危 32:9.11.4-9.P2.el7 32:9.11.4-16.P2.el7 bind: TCP Pipelining doesn't limit TCP clients on a single connection

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6477

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-26 16:15 修改: 2023-11-07 03:13

glibc CVE-2009-5155 中危 2.17-292.el7 glibc: parse_reg_exp in posix/regcomp.c misparses alternatives leading to denial of service or trigger incorrect result

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-5155

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:04

glibc CVE-2015-8983 中危 2.17-292.el7 glibc: _IO_wstr_overflow integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8983

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2023-11-07 02:28

glibc CVE-2016-1234 中危 2.17-292.el7 glibc: Stack-based buffer overflow in glob with GLOB_ALTDIRFUNC and crafted directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1234

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-01 20:59 修改: 2023-11-07 02:29

glibc CVE-2016-4429 中危 2.17-292.el7 glibc: libtirpc: stack (frame) overflow in Sun RPC clntudp_call()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4429

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-10 15:59 修改: 2023-11-07 02:32

glibc CVE-2017-8804 中危 2.17-292.el7 glibc: memory leak in sunrpc when decoding malformed XDR

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8804

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-07 18:29 修改: 2024-08-05 17:15

glibc CVE-2019-25013 中危 2.17-292.el7 2.17-322.el7_9 glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44

glibc CVE-2019-9169 中危 2.17-292.el7 glibc: regular-expression match via proceed_next_node in posix/regexec.c leads to heap-based buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9169

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-02-26 02:29 修改: 2023-11-07 03:13

glibc CVE-2020-10029 中危 2.17-292.el7 2.17-322.el7_9 glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14

glibc CVE-2020-1752 中危 2.17-292.el7 glibc: use-after-free in glob() function when expanding ~user

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19

glibc CVE-2020-29573 中危 2.17-292.el7 2.17-322.el7_9 glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29573

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-06 00:15 修改: 2023-04-26 19:09

glibc CVE-2021-35942 中危 2.17-292.el7 glibc: Arbitrary read in wordexp()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36

glibc CVE-2021-3999 中危 2.17-292.el7 glibc: Off-by-one buffer overflow/underflow in getcwd()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43

glibc CVE-2022-23218 中危 2.17-292.el7 glibc: Stack-based buffer overflow in svcunix_create via long pathnames

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37

glibc CVE-2022-23219 中危 2.17-292.el7 glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32

glibc CVE-2023-4806 中危 2.17-292.el7 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15

glibc CVE-2023-4813 中危 2.17-292.el7 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15

glibc CVE-2023-5156 中危 2.17-292.el7 glibc: DoS due to memory leak in getaddrinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15

glibc CVE-2024-33600 中危 2.17-292.el7 2.17-326.el7_9.3 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

bind-license CVE-2020-8622 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.2 bind: truncated TSIG response can lead to an assertion failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8622

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-08-21 21:15 修改: 2023-11-07 03:26

bind-license CVE-2020-8623 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.2 bind: remotely triggerable assertion failure in pk11.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8623

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-08-21 21:15 修改: 2023-11-07 03:26

glibc-common CVE-2009-5155 中危 2.17-292.el7 glibc: parse_reg_exp in posix/regcomp.c misparses alternatives leading to denial of service or trigger incorrect result

漏洞详情: https://avd.aquasec.com/nvd/cve-2009-5155

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:04

glibc-common CVE-2015-8983 中危 2.17-292.el7 glibc: _IO_wstr_overflow integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8983

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2023-11-07 02:28

glibc-common CVE-2016-1234 中危 2.17-292.el7 glibc: Stack-based buffer overflow in glob with GLOB_ALTDIRFUNC and crafted directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1234

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-01 20:59 修改: 2023-11-07 02:29

glibc-common CVE-2016-4429 中危 2.17-292.el7 glibc: libtirpc: stack (frame) overflow in Sun RPC clntudp_call()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4429

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-10 15:59 修改: 2023-11-07 02:32

glibc-common CVE-2017-8804 中危 2.17-292.el7 glibc: memory leak in sunrpc when decoding malformed XDR

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8804

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-07 18:29 修改: 2024-08-05 17:15

glibc-common CVE-2019-25013 中危 2.17-292.el7 2.17-322.el7_9 glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25013

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-04 18:15 修改: 2023-11-09 14:44

glibc-common CVE-2019-9169 中危 2.17-292.el7 glibc: regular-expression match via proceed_next_node in posix/regexec.c leads to heap-based buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9169

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-02-26 02:29 修改: 2023-11-07 03:13

glibc-common CVE-2020-10029 中危 2.17-292.el7 2.17-322.el7_9 glibc: stack corruption from crafted input in cosl, sinl, sincosl, and tanl functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10029

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-03-04 15:15 修改: 2023-11-07 03:14

glibc-common CVE-2020-1752 中危 2.17-292.el7 glibc: use-after-free in glob() function when expanding ~user

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1752

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-04-30 17:15 修改: 2023-11-07 03:19

glibc-common CVE-2020-29573 中危 2.17-292.el7 2.17-322.el7_9 glibc: stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29573

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-06 00:15 修改: 2023-04-26 19:09

glibc-common CVE-2021-35942 中危 2.17-292.el7 glibc: Arbitrary read in wordexp()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35942

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-22 18:15 修改: 2023-11-07 03:36

glibc-common CVE-2021-3999 中危 2.17-292.el7 glibc: Off-by-one buffer overflow/underflow in getcwd()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3999

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-24 16:15 修改: 2023-02-12 23:43

glibc-common CVE-2022-23218 中危 2.17-292.el7 glibc: Stack-based buffer overflow in svcunix_create via long pathnames

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23218

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:37

glibc-common CVE-2022-23219 中危 2.17-292.el7 glibc: Stack-based buffer overflow in sunrpc clnt_create via a long pathname

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23219

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 07:15 修改: 2022-11-08 13:32

glibc-common CVE-2023-4806 中危 2.17-292.el7 glibc: potential use-after-free in getaddrinfo()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15

glibc-common CVE-2023-4813 中危 2.17-292.el7 glibc: potential use-after-free in gaih_inet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15

glibc-common CVE-2023-5156 中危 2.17-292.el7 glibc: DoS due to memory leak in getaddrinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5156

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-25 16:15 修改: 2024-09-14 03:15

glibc-common CVE-2024-33600 中危 2.17-292.el7 2.17-326.el7_9.3 glibc: null pointer dereferences after failed netgroup cache insertion

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

gmp CVE-2021-43618 中危 1:6.0.0-15.el7 gmp: Integer overflow and resultant buffer overflow via crafted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15

gnupg2 CVE-2014-4617 中危 2.0.22-5.el7_5 gnupg: infinite loop when decompressing data packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-4617

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-06-25 11:19 修改: 2023-11-07 02:20

gnupg2 CVE-2019-13050 中危 2.0.22-5.el7_5 GnuPG: interaction between the sks-keyserver code and GnuPG allows for a Certificate Spamming Attack which leads to persistent DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13050

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-29 17:15 修改: 2023-11-07 03:03

gnupg2 CVE-2022-34903 中危 2.0.22-5.el7_5 gpg: Signature spoofing via status line injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34903

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-01 22:15 修改: 2023-11-07 03:48

bind-license CVE-2020-8624 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.2 bind: incorrect enforcement of update-policy rules of type "subdomain"

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8624

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-08-21 21:15 修改: 2023-11-07 03:26

bind-license CVE-2021-25214 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.7 bind: Broken inbound incremental zone update (IXFR) can cause named to terminate unexpectedly

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25214

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-29 01:15 修改: 2023-11-07 03:31

bind-license CVE-2021-25219 中危 32:9.11.4-9.P2.el7 bind: Lame cache can be abused to severely degrade resolver performance

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25219

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-10-27 21:15 修改: 2023-11-07 03:31

bind-license CVE-2021-25220 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.13 bind: DNS forwarders - cache poisoning vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25220

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-23 13:15 修改: 2023-11-09 14:44

bind-license CVE-2022-2795 中危 32:9.11.4-9.P2.el7 32:9.11.4-26.P2.el7_9.13 bind: processing large delegations may severely degrade resolver performance

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2795

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-21 11:15 修改: 2023-11-07 03:46

bind-license CVE-2022-3094 中危 32:9.11.4-9.P2.el7 bind: flooding with UPDATE requests may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3094

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-26 21:15 修改: 2023-11-07 03:50

binutils CVE-2017-6965 中危 2.27-41.base.el7_7.2 binutils: Heap-based buffer overflow in target_specific_reloc_handling in readelf

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6965

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-17 09:59 修改: 2017-09-19 01:36

binutils CVE-2017-6966 中危 2.27-41.base.el7_7.2 binutils: Use-after-free in target_specific_reloc_handling in readelf

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6966

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-17 09:59 修改: 2017-09-19 01:36

binutils CVE-2018-20673 中危 2.27-41.base.el7_7.2 libiberty: Integer overflow in demangle_template() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20673

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-01-04 18:29 修改: 2020-08-24 17:37

binutils CVE-2019-9074 中危 2.27-41.base.el7_7.2 binutils: out-of-bound read in function bfd_getl32 in libbfd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9074

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-02-24 00:29 修改: 2021-12-10 20:11

binutils CVE-2019-9075 中危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in function _bfd_archive_64_bit_slurp_armap in archive64.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9075

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-02-24 00:29 修改: 2021-12-10 20:19

binutils CVE-2019-9077 中危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in function process_mips_specific in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9077

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-02-24 00:29 修改: 2023-08-16 14:17

binutils CVE-2020-16590 中危 2.27-41.base.el7_7.2 binutils: double free vulnerability in process_symbol_table could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16590

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

binutils CVE-2020-16592 中危 2.27-41.base.el7_7.2 binutils: use-after-free in bfd_hash_lookup could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16592

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

binutils CVE-2021-20197 中危 2.27-41.base.el7_7.2 binutils: Race window allows users to own arbitrary files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20197

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15

java-11-openjdk CVE-2020-14556 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14562 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Excessive memory usage in ImageIO TIFF plugin (ImageIO, 8233239)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14562

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14573 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete interface type checks in Graal compiler (Hotspot, 8236867)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14573

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14621 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14781 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk CVE-2020-14782 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk CVE-2020-14792 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk CVE-2020-14797 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk CVE-2020-14803 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42

java-11-openjdk CVE-2020-2767 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of Certificate messages during TLS handshake (JSSE, 8232581)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-31 15:09

java-11-openjdk CVE-2020-2773 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2778 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incomplete enforcement of algorithm restrictions for TLS (JSSE, 8232424)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2778

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-14 18:33

java-11-openjdk CVE-2020-2781 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2800 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2830 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2021-2163 中危 1:11.0.6.10-1.el7_7 1:11.0.11.0.9-1.el7_9 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32

java-11-openjdk CVE-2021-2341 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32

java-11-openjdk CVE-2021-2369 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15

java-11-openjdk CVE-2021-35550 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2021-35556 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2021-35559 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36

java-11-openjdk CVE-2021-35561 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk CVE-2021-35564 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2021-35578 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2021-35586 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk CVE-2022-21248 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09

java-11-openjdk CVE-2022-21277 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect reading of TIFF files in TIFFNullDecompressor (ImageIO, 8270952)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21277

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 19:22

java-11-openjdk CVE-2022-21282 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06

java-11-openjdk CVE-2022-21283 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28

java-11-openjdk CVE-2022-21291 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect marking of writeable fields (Hotspot, 8270386)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21291

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:46

java-11-openjdk CVE-2022-21293 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43

java-11-openjdk CVE-2022-21294 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13

java-11-openjdk CVE-2022-21296 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44

java-11-openjdk CVE-2022-21299 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2022-21305 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk CVE-2022-21340 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk CVE-2022-21341 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk CVE-2022-21360 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11

java-11-openjdk CVE-2022-21365 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12

java-11-openjdk CVE-2022-21366 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in TIFF*Decompressor (ImageIO, 8274096)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21366

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2023-12-08 20:43

java-11-openjdk CVE-2022-21426 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53

java-11-openjdk CVE-2022-21434 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2022-21443 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2022-21496 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2022-21540 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-21541 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-21618 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper MultiByte conversion can lead to buffer overflow (JGSS, 8286077)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21618

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-21626 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-21628 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2023-21835 中危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21835

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2023-21939 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-21954 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-21967 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-22036 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: ZIP file parsing infinite loop (8302483)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22036

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk CVE-2023-22041 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: weakness in AES implementation (8308682)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22041

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk CVE-2023-22049 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-22081 中危 1:11.0.6.10-1.el7_7 1:11.0.21.0.9-1.el7_9 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55

java-11-openjdk CVE-2023-25193 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08

java-11-openjdk CVE-2023-48161 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48

java-11-openjdk CVE-2024-20919 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51

java-11-openjdk CVE-2024-20921 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-05 16:35

java-11-openjdk CVE-2024-20926 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35

java-11-openjdk CVE-2024-20945 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-12 19:35

java-11-openjdk CVE-2024-21011 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-21 21:15

java-11-openjdk CVE-2024-21068 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk CVE-2024-21085 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk CVE-2024-21094 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46

java-11-openjdk CVE-2024-21131 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk CVE-2024-21138 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk CVE-2024-21140 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46

java-11-openjdk CVE-2024-21144 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15

java-11-openjdk CVE-2024-21145 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46

java-11-openjdk CVE-2024-21208 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk CVE-2024-21210 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk CVE-2024-21217 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29

java-11-openjdk CVE-2024-21235 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30

binutils CVE-2021-20294 中危 2.27-41.base.el7_7.2 binutils: stack buffer overflow WRITE may lead to a DoS via a crafted ELF

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20294

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-29 16:15 修改: 2023-11-07 03:29

binutils CVE-2021-37322 中危 2.27-41.base.el7_7.2 binutils: use-after-free in c++filt in cplus-dem.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37322

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-11-18 22:15 修改: 2021-12-16 19:44

binutils CVE-2021-42574 中危 2.27-41.base.el7_7.2 2.27-44.base.el7_9.1 environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42574

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-11-01 04:15 修改: 2024-08-04 04:16

binutils CVE-2021-45078 中危 2.27-41.base.el7_7.2 binutils: out-of-bounds write in stab_xcoff_builtin_type() in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45078

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-12-15 20:15 修改: 2023-11-07 03:39

binutils CVE-2022-4285 中危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4285

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-27 18:15 修改: 2023-11-07 03:57

binutils CVE-2023-1579 中危 2.27-41.base.el7_7.2 binutils: Heap-buffer-overflow binutils-gdb/bfd/libbfd.c in bfd_getl64

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1579

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-03 23:15 修改: 2023-11-07 04:04

coreutils CVE-2016-2781 中危 8.22-24.el7 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32

coreutils CVE-2017-18018 中危 8.22-24.el7 coreutils: race condition vulnerability in chown and chgrp

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46

cpio CVE-2019-14866 中危 2.11-27.el7 2.11-28.el7 cpio: improper input validation when writing tar header fields leads to unexpected tar generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14866

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-07 17:15 修改: 2023-06-04 22:15

cpio CVE-2021-38185 中危 2.11-27.el7 cpio: integer overflow in ds_fgetstr() in dstring.c can lead to an out-of-bounds write via a crafted pattern file

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38185

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-08-08 00:15 修改: 2023-06-04 22:15

cpio CVE-2023-7207 中危 2.11-27.el7 cpio: path traversal vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7207

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-29 01:42 修改: 2024-02-29 13:49

avahi-libs CVE-2021-36217 中危 0.6.31-19.el7 avahi: local DoS against avahi-daemon via D-Bus interface

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36217

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-07 18:15 修改: 2023-11-07 03:36

cups-libs CVE-2017-18190 中危 1:1.6.3-40.el7 1:1.6.3-51.el7 cups: DNS rebinding attacks via incorrect whitelist

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18190

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-16 17:29 修改: 2019-10-03 00:03

cups-libs CVE-2018-4180 中危 1:1.6.3-40.el7 1:1.6.3-43.el7 cups: Local privilege escalation to root due to insecure environment variable handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-4180

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-01-11 18:29 修改: 2019-10-03 00:03

java-11-openjdk-devel CVE-2020-14556 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14562 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Excessive memory usage in ImageIO TIFF plugin (ImageIO, 8233239)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14562

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14573 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete interface type checks in Graal compiler (Hotspot, 8236867)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14573

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14621 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14781 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-devel CVE-2020-14782 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-devel CVE-2020-14792 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-devel CVE-2020-14797 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-devel CVE-2020-14803 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42

java-11-openjdk-devel CVE-2020-2767 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of Certificate messages during TLS handshake (JSSE, 8232581)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-31 15:09

java-11-openjdk-devel CVE-2020-2773 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2778 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incomplete enforcement of algorithm restrictions for TLS (JSSE, 8232424)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2778

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-14 18:33

java-11-openjdk-devel CVE-2020-2781 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2800 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2830 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2021-2163 中危 1:11.0.6.10-1.el7_7 1:11.0.11.0.9-1.el7_9 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32

java-11-openjdk-devel CVE-2021-2341 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32

java-11-openjdk-devel CVE-2021-2369 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15

java-11-openjdk-devel CVE-2021-35550 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2021-35556 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2021-35559 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36

java-11-openjdk-devel CVE-2021-35561 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk-devel CVE-2021-35564 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2021-35578 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2021-35586 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21248 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09

java-11-openjdk-devel CVE-2022-21277 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect reading of TIFF files in TIFFNullDecompressor (ImageIO, 8270952)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21277

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 19:22

java-11-openjdk-devel CVE-2022-21282 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06

java-11-openjdk-devel CVE-2022-21283 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28

java-11-openjdk-devel CVE-2022-21291 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect marking of writeable fields (Hotspot, 8270386)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21291

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:46

java-11-openjdk-devel CVE-2022-21293 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43

java-11-openjdk-devel CVE-2022-21294 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13

java-11-openjdk-devel CVE-2022-21296 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44

java-11-openjdk-devel CVE-2022-21299 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21305 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-devel CVE-2022-21340 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-devel CVE-2022-21341 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-devel CVE-2022-21360 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11

java-11-openjdk-devel CVE-2022-21365 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12

java-11-openjdk-devel CVE-2022-21366 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in TIFF*Decompressor (ImageIO, 8274096)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21366

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2023-12-08 20:43

java-11-openjdk-devel CVE-2022-21426 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53

java-11-openjdk-devel CVE-2022-21434 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21443 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21496 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21540 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-21541 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-21618 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper MultiByte conversion can lead to buffer overflow (JGSS, 8286077)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21618

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-21626 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-21628 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2023-21835 中危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21835

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2023-21939 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-21954 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-21967 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-22036 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: ZIP file parsing infinite loop (8302483)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22036

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-devel CVE-2023-22041 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: weakness in AES implementation (8308682)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22041

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-devel CVE-2023-22049 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-22081 中危 1:11.0.6.10-1.el7_7 1:11.0.21.0.9-1.el7_9 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55

java-11-openjdk-devel CVE-2023-25193 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08

java-11-openjdk-devel CVE-2023-48161 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48

java-11-openjdk-devel CVE-2024-20919 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51

java-11-openjdk-devel CVE-2024-20921 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-05 16:35

java-11-openjdk-devel CVE-2024-20926 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35

java-11-openjdk-devel CVE-2024-20945 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-12 19:35

java-11-openjdk-devel CVE-2024-21011 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-21 21:15

java-11-openjdk-devel CVE-2024-21068 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk-devel CVE-2024-21085 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk-devel CVE-2024-21094 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46

java-11-openjdk-devel CVE-2024-21131 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk-devel CVE-2024-21138 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk-devel CVE-2024-21140 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46

java-11-openjdk-devel CVE-2024-21144 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15

java-11-openjdk-devel CVE-2024-21145 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46

java-11-openjdk-devel CVE-2024-21208 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk-devel CVE-2024-21210 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk-devel CVE-2024-21217 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29

java-11-openjdk-devel CVE-2024-21235 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30

cups-libs CVE-2018-4181 中危 1:1.6.3-40.el7 1:1.6.3-43.el7 cups: Manipulation of cupsd.conf by a local attacker resulting in limited reads of arbitrary files as root

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-4181

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-01-11 18:29 修改: 2019-10-03 00:03

cups-libs CVE-2018-4300 中危 1:1.6.3-40.el7 1:1.6.3-43.el7 cups: Session cookie generated by the CUPS web interface is easy to guess

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-4300

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-04-03 18:29 修改: 2019-09-28 12:15

cups-libs CVE-2018-4700 中危 1:1.6.3-40.el7 1:1.6.3-43.el7

漏洞详情:

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

cups-libs CVE-2020-10001 中危 1:1.6.3-40.el7 cups: access to uninitialized buffer in ipp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10001

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-02 18:15 修改: 2021-11-30 21:49

cups-libs CVE-2023-32324 中危 1:1.6.3-40.el7 cups: heap buffer overflow may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32324

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-01 17:15 修改: 2023-06-08 14:32

cups-libs CVE-2023-34241 中危 1:1.6.3-40.el7 cups: use-after-free in cupsdAcceptClient() in scheduler/client.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34241

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-22 23:15 修改: 2023-11-17 19:33

cups-libs CVE-2023-4504 中危 1:1.6.3-40.el7 libppd: Postscript Parsing Heap Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4504

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-09-21 23:15 修改: 2023-11-09 20:58

cups-libs CVE-2024-35235 中危 1:1.6.3-40.el7 cups: Cupsd Listen arbitrary chmod 0140777

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35235

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-06-11 15:16 修改: 2024-06-14 03:15

curl CVE-2015-3153 中危 7.29.0-54.el7_7.2 curl: sensitive HTTP server headers also sent to proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3153

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-05-01 15:59 修改: 2018-10-17 01:29

curl CVE-2016-8615 中危 7.29.0-54.el7_7.2 curl: Cookie injection for other servers

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8615

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

curl CVE-2016-8617 中危 7.29.0-54.el7_7.2 curl: Out-of-bounds write via unchecked multiplication

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8617

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 22:29 修改: 2023-11-07 02:36

curl CVE-2016-8618 中危 7.29.0-54.el7_7.2 curl: Double-free in curl_maprintf

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8618

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

curl CVE-2016-8619 中危 7.29.0-54.el7_7.2 curl: Double-free in krb5 code

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8619

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

curl CVE-2016-8624 中危 7.29.0-54.el7_7.2 curl: Invalid URL parsing with '#'

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8624

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

java-11-openjdk-headless CVE-2020-14556 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14562 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Excessive memory usage in ImageIO TIFF plugin (ImageIO, 8233239)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14562

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14573 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: Incomplete interface type checks in Graal compiler (Hotspot, 8236867)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14573

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14621 中危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14781 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-headless CVE-2020-14782 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-headless CVE-2020-14792 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-headless CVE-2020-14797 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-headless CVE-2020-14803 中危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42

java-11-openjdk-headless CVE-2020-2767 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of Certificate messages during TLS handshake (JSSE, 8232581)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2767

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-31 15:09

java-11-openjdk-headless CVE-2020-2773 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2778 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incomplete enforcement of algorithm restrictions for TLS (JSSE, 8232424)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2778

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2022-10-14 18:33

java-11-openjdk-headless CVE-2020-2781 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2800 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2830 中危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2021-2163 中危 1:11.0.6.10-1.el7_7 1:11.0.11.0.9-1.el7_9 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32

java-11-openjdk-headless CVE-2021-2341 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32

java-11-openjdk-headless CVE-2021-2369 中危 1:11.0.6.10-1.el7_7 1:11.0.12.0.7-0.el7_9 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15

java-11-openjdk-headless CVE-2021-35550 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2021-35556 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2021-35559 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36

java-11-openjdk-headless CVE-2021-35561 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36

java-11-openjdk-headless CVE-2021-35564 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2021-35578 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2021-35586 中危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21248 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09

java-11-openjdk-headless CVE-2022-21277 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect reading of TIFF files in TIFFNullDecompressor (ImageIO, 8270952)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21277

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 19:22

java-11-openjdk-headless CVE-2022-21282 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06

java-11-openjdk-headless CVE-2022-21283 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28

java-11-openjdk-headless CVE-2022-21291 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect marking of writeable fields (Hotspot, 8270386)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21291

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:46

java-11-openjdk-headless CVE-2022-21293 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43

java-11-openjdk-headless CVE-2022-21294 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13

java-11-openjdk-headless CVE-2022-21296 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44

java-11-openjdk-headless CVE-2022-21299 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21305 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-headless CVE-2022-21340 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-headless CVE-2022-21341 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15

java-11-openjdk-headless CVE-2022-21360 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11

java-11-openjdk-headless CVE-2022-21365 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12

java-11-openjdk-headless CVE-2022-21366 中危 1:11.0.6.10-1.el7_7 1:11.0.14.0.9-1.el7_9 OpenJDK: Excessive memory allocation in TIFF*Decompressor (ImageIO, 8274096)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21366

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-01-19 12:15 修改: 2023-12-08 20:43

java-11-openjdk-headless CVE-2022-21426 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53

java-11-openjdk-headless CVE-2022-21434 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21443 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21496 中危 1:11.0.6.10-1.el7_7 1:11.0.15.0.9-2.el7_9 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21540 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: class compilation issue (Hotspot, 8281859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21540

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-21541 中危 1:11.0.6.10-1.el7_7 1:11.0.16.0.8-1.el7_9 OpenJDK: improper restriction of MethodHandle.invokeBasic() (Hotspot, 8281866)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21541

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-19 22:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-21618 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper MultiByte conversion can lead to buffer overflow (JGSS, 8286077)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21618

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-21626 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: excessive memory allocation in X.509 certificate parsing (Security, 8286533)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21626

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-21628 中危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: HttpServer no connection count limit (Lightweight HTTP Server, 8286918)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21628

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2023-21835 中危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21835

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2023-21939 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: Swing HTML parsing issue (8296832)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-21954 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect enqueue of references in garbage collector (8298191)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-21967 中危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: certificate validation issue in TLS session negotiation (8298310)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21967

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-22036 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: ZIP file parsing infinite loop (8302483)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22036

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-headless CVE-2023-22041 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: weakness in AES implementation (8308682)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22041

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-headless CVE-2023-22049 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22049

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-22081 中危 1:11.0.6.10-1.el7_7 1:11.0.21.0.9-1.el7_9 OpenJDK: certificate path validation issue during client authentication (8309966)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22081

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-17 22:15 修改: 2024-02-16 15:55

java-11-openjdk-headless CVE-2023-25193 中危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 harfbuzz: allows attackers to trigger O(n^2) growth via consecutive marks

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25193

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-04 20:15 修改: 2023-11-07 04:08

java-11-openjdk-headless CVE-2023-48161 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48161

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-22 06:15 修改: 2023-11-29 18:48

java-11-openjdk-headless CVE-2024-20919 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: JVM class file verifier flaw allows unverified bytecode execution (8314295)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20919

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-02-20 19:51

java-11-openjdk-headless CVE-2024-20921 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: range check loop optimization issue (8314307)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20921

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-05 16:35

java-11-openjdk-headless CVE-2024-20926 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: arbitrary Java code execution in Nashorn (8314284)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20926

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 22:15 修改: 2024-02-02 17:35

java-11-openjdk-headless CVE-2024-20945 中危 1:11.0.6.10-1.el7_7 1:11.0.22.0.7-1.el7_9 OpenJDK: logging of digital signature private keys (8316976)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-20945

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-02-17 02:15 修改: 2024-11-12 19:35

java-11-openjdk-headless CVE-2024-21011 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: long Exception message leading to crash (8319851)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21011

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-21 21:15

java-11-openjdk-headless CVE-2024-21068 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: integer overflow in C1 compiler address generation (8322122)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21068

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk-headless CVE-2024-21085 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: Pack200 excessive memory allocation (8322114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21085

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-04-26 09:15

java-11-openjdk-headless CVE-2024-21094 中危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21094

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-07-03 01:46

java-11-openjdk-headless CVE-2024-21131 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: potential UTF8 size overflow (8314794)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21131

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk-headless CVE-2024-21138 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21138

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-07-19 14:15

java-11-openjdk-headless CVE-2024-21140 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21140

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-08-01 13:46

java-11-openjdk-headless CVE-2024-21144 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21144

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-18 15:15

java-11-openjdk-headless CVE-2024-21145 中危 1:11.0.6.10-1.el7_7 1:11.0.24.0.8-1.el7_9 OpenJDK: Out-of-bounds access in 2D image handling (8324559)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21145

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-16 23:15 修改: 2024-09-20 13:46

java-11-openjdk-headless CVE-2024-21208 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: HTTP client improper handling of maxHeaderSize (8328286)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21208

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk-headless CVE-2024-21210 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Array indexing integer overflow (8328544)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21210

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-31 13:35

java-11-openjdk-headless CVE-2024-21217 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Unbounded allocation leads to out-of-memory error (8331446)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21217

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:29

java-11-openjdk-headless CVE-2024-21235 中危 1:11.0.6.10-1.el7_7 1:11.0.25.0.9-1.el7_9 JDK: Integer conversion error leads to incorrect range check (8332644)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21235

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-10-15 20:15 修改: 2024-10-18 18:30

json-c CVE-2020-12762 中危 0.11-4.el7_0 libfastjson: integer overflow and out-of-bounds write via a large JSON file

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12762

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-05-09 18:15 修改: 2023-11-07 03:15

curl CVE-2016-8625 中危 7.29.0-54.el7_7.2 curl: IDNA 2003 makes curl use wrong host

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8625

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

curl CVE-2017-1000254 中危 7.29.0-54.el7_7.2 curl: FTP PWD response parser out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000254

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-06 13:29 修改: 2023-11-07 02:37

krb5-libs CVE-2014-5351 中危 1.15.1-37.el7_7.2 krb5: current keys returned when randomizing the keys for a service principal

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-5351

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-10 01:55 修改: 2020-01-21 15:46

krb5-libs CVE-2015-2695 中危 1.15.1-37.el7_7.2 krb5: SPNEGO context aliasing bugs

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2695

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-09 03:59 修改: 2021-02-02 19:05

krb5-libs CVE-2015-2696 中危 1.15.1-37.el7_7.2 krb5: IAKERB context aliasing flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2696

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-09 03:59 修改: 2021-02-02 18:51

krb5-libs CVE-2015-2697 中危 1.15.1-37.el7_7.2 krb5: build_principal() memory flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2697

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-09 03:59 修改: 2021-02-02 19:06

krb5-libs CVE-2017-15088 中危 1.15.1-37.el7_7.2 krb5: Buffer overflow in get_matching_data()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15088

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-23 17:29 修改: 2021-01-26 15:28

krb5-libs CVE-2020-17049 中危 1.15.1-37.el7_7.2 Kerberos: delegation constrain bypass in S4U2Proxy

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-11 07:15 修改: 2024-09-10 16:15

krb5-libs CVE-2020-28196 中危 1.15.1-37.el7_7.2 krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21

krb5-libs CVE-2021-36222 中危 1.15.1-37.el7_7.2 krb5: Sending a request containing PA-ENCRYPTED-CHALLENGE padata element without using FAST could result in NULL dereference in KDC which leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36222

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-22 18:15 修改: 2021-11-28 23:19

krb5-libs CVE-2021-37750 中危 1.15.1-37.el7_7.2 1.15.1-51.el7_9 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37

krb5-libs CVE-2024-26462 中危 1.15.1-37.el7_7.2 krb5: Memory leak at /krb5/src/kdc/ndr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26462

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09

krb5-libs CVE-2024-37370 中危 1.15.1-37.el7_7.2 1.15.1-55.el7_9.2 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48

krb5-libs CVE-2024-37371 中危 1.15.1-37.el7_7.2 1.15.1-55.el7_9.2 krb5: GSS message token handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39

curl CVE-2017-8817 中危 7.29.0-54.el7_7.2 curl: FTP wildcard out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8817

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-29 18:29 修改: 2018-11-13 11:29

curl CVE-2019-5482 中危 7.29.0-54.el7_7.2 7.29.0-59.el7 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11

libX11 CVE-2016-7943 中危 1.6.7-2.el7 libX11: Insufficient validation of server responses in FontNames

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7943

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libX11 CVE-2020-14344 中危 1.6.7-2.el7 libX11: Heap overflow in the X input method client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17

libX11 CVE-2022-3554 中危 1.6.7-2.el7 libX11: memory leak in _XimRegisterIMInstantiateCallback() of modules/im/ximcp/imsClbk.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3554

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51

libX11 CVE-2023-3138 中危 1.6.7-2.el7 libX11: InitExt.c can overwrite unintended portions of the Display structure if the extension request leads to a buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3138

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-28 21:15 修改: 2023-12-08 19:15

libX11 CVE-2023-43785 中危 1.6.7-2.el7 libX11: out-of-bounds memory access in _XkbReadKeySyms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43785

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

libX11 CVE-2023-43786 中危 1.6.7-2.el7 libX11: stack exhaustion from infinite recursion in PutSubImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43786

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

libX11 CVE-2023-43787 中危 1.6.7-2.el7 libX11: integer overflow in XCreateImage() leading to a heap overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43787

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

curl CVE-2020-8177 中危 7.29.0-54.el7_7.2 7.29.0-59.el7_9.1 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04

curl CVE-2020-8284 中危 7.29.0-54.el7_7.2 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50

libX11-common CVE-2016-7943 中危 1.6.7-2.el7 libX11: Insufficient validation of server responses in FontNames

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7943

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libX11-common CVE-2020-14344 中危 1.6.7-2.el7 libX11: Heap overflow in the X input method client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17

libX11-common CVE-2022-3554 中危 1.6.7-2.el7 libX11: memory leak in _XimRegisterIMInstantiateCallback() of modules/im/ximcp/imsClbk.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3554

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51

libX11-common CVE-2023-3138 中危 1.6.7-2.el7 libX11: InitExt.c can overwrite unintended portions of the Display structure if the extension request leads to a buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3138

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-28 21:15 修改: 2023-12-08 19:15

libX11-common CVE-2023-43785 中危 1.6.7-2.el7 libX11: out-of-bounds memory access in _XkbReadKeySyms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43785

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

libX11-common CVE-2023-43786 中危 1.6.7-2.el7 libX11: stack exhaustion from infinite recursion in PutSubImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43786

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

libX11-common CVE-2023-43787 中危 1.6.7-2.el7 libX11: integer overflow in XCreateImage() leading to a heap overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43787

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-10 13:15 修改: 2024-09-16 15:15

libXi CVE-2016-7945 中危 1.7.9-1.el7 libXi: Insufficient validation of server responses result in Integer overflows

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7945

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libXrender CVE-2016-7949 中危 0.9.10-1.el7 libXrender: Insufficient validation of server responses results in overflow of previously reserved memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7949

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libXrender CVE-2016-7950 中危 0.9.10-1.el7 libXrender: Insufficient validation of server responses results out-of-bounds write in XRenderQueryFilters

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7950

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libXtst CVE-2016-7951 中危 1.2.3-1.el7 libXtst: Insufficient validation of server responses result in Integer overflows

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7951

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libXtst CVE-2016-7952 中危 1.2.3-1.el7 libXtst: Insufficient validation of server responses result in various data mishandlings

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7952

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libblkid CVE-2014-9114 中危 2.23.2-61.el7_7.1 util-linux: command injection flaw in blkid

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9114

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-31 16:59 修改: 2023-11-07 02:22

libblkid CVE-2016-2779 中危 2.23.2-61.el7_7.1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14

libblkid CVE-2020-21583 中危 2.23.2-61.el7_7.1 util-linux: arbitrary commands execution via the path parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2024-10-07 19:36

libblkid CVE-2022-0563 中危 2.23.2-61.el7_7.1 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15

libcap CVE-2023-2603 中危 2.22-10.el7 libcap: Integer Overflow in _libcap_strdup()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32

libcom_err CVE-2015-0247 中危 1.42.9-16.el7 e2fsprogs: ext2fs_open2() missing first_meta_bg boundary check leading to heap buffer overflow (oCERT-015-002)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-0247

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-02-17 15:59 修改: 2018-10-09 19:55

libcom_err CVE-2019-5094 中危 1.42.9-16.el7 1.42.9-19.el7 e2fsprogs: Crafted ext4 partition leads to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5094

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-24 22:15 修改: 2023-11-07 03:11

libcom_err CVE-2019-5188 中危 1.42.9-16.el7 1.42.9-19.el7 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11

libcom_err CVE-2022-1304 中危 1.42.9-16.el7 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15

libcurl CVE-2015-3153 中危 7.29.0-54.el7_7.2 curl: sensitive HTTP server headers also sent to proxies

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3153

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-05-01 15:59 修改: 2018-10-17 01:29

libcurl CVE-2016-8615 中危 7.29.0-54.el7_7.2 curl: Cookie injection for other servers

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8615

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8617 中危 7.29.0-54.el7_7.2 curl: Out-of-bounds write via unchecked multiplication

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8617

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 22:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8618 中危 7.29.0-54.el7_7.2 curl: Double-free in curl_maprintf

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8618

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8619 中危 7.29.0-54.el7_7.2 curl: Double-free in krb5 code

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8619

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8624 中危 7.29.0-54.el7_7.2 curl: Invalid URL parsing with '#'

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8624

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8625 中危 7.29.0-54.el7_7.2 curl: IDNA 2003 makes curl use wrong host

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8625

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

libcurl CVE-2017-1000254 中危 7.29.0-54.el7_7.2 curl: FTP PWD response parser out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000254

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-06 13:29 修改: 2023-11-07 02:37

libcurl CVE-2017-8817 中危 7.29.0-54.el7_7.2 curl: FTP wildcard out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8817

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-29 18:29 修改: 2018-11-13 11:29

libcurl CVE-2019-5482 中危 7.29.0-54.el7_7.2 7.29.0-59.el7 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11

libcurl CVE-2020-8177 中危 7.29.0-54.el7_7.2 7.29.0-59.el7_9.1 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04

libcurl CVE-2020-8284 中危 7.29.0-54.el7_7.2 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50

libcurl CVE-2020-8285 中危 7.29.0-54.el7_7.2 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47

libcurl CVE-2021-22876 中危 7.29.0-54.el7_7.2 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47

libcurl CVE-2021-22924 中危 7.29.0-54.el7_7.2 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11

libcurl CVE-2021-22946 中危 7.29.0-54.el7_7.2 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12

libcurl CVE-2021-22947 中危 7.29.0-54.el7_7.2 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03

libcurl CVE-2022-27774 中危 7.29.0-54.el7_7.2 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

libcurl CVE-2022-27776 中危 7.29.0-54.el7_7.2 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

libcurl CVE-2022-27778 中危 7.29.0-54.el7_7.2 curl: removes wrong file on error

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27778

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

libcurl CVE-2022-27779 中危 7.29.0-54.el7_7.2 curl: cookie for trailing dot TLD

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

libcurl CVE-2022-27780 中危 7.29.0-54.el7_7.2 curl: percent-encoded path separator in URL host

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27780

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-08-07 19:35

libcurl CVE-2022-27782 中危 7.29.0-54.el7_7.2 curl: TLS and SSH connection too eager reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

libcurl CVE-2022-30115 中危 7.29.0-54.el7_7.2 curl: HSTS bypass via trailing dot

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30115

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

libcurl CVE-2022-32208 中危 7.29.0-54.el7_7.2 curl: FTP-KRB bad message verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00

libcurl CVE-2022-43551 中危 7.29.0-54.el7_7.2 curl: HSTS bypass via IDN

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58

libcurl CVE-2023-27535 中危 7.29.0-54.el7_7.2 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47

libcurl CVE-2023-27536 中危 7.29.0-54.el7_7.2 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

libcurl CVE-2023-27538 中危 7.29.0-54.el7_7.2 curl: SSH connection too eager reuse still

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

libcurl CVE-2023-28321 中危 7.29.0-54.el7_7.2 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10

libcurl CVE-2024-2398 中危 7.29.0-54.el7_7.2 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15

libdb CVE-2017-10140 中危 5.3.21-25.el7 libdb: Reads DB_CONFIG from the current working directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10140

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-04-16 17:29 修改: 2020-07-15 18:15

libdb-utils CVE-2017-10140 中危 5.3.21-25.el7 libdb: Reads DB_CONFIG from the current working directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10140

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-04-16 17:29 修改: 2020-07-15 18:15

libgcc CVE-2014-5044 中危 4.8.5-39.el7 gcc: integer overflow flaws in libgfortran

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-5044

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-03-07 15:29 修改: 2018-03-27 23:48

libgcc CVE-2018-20673 中危 4.8.5-39.el7 libiberty: Integer overflow in demangle_template() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20673

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-01-04 18:29 修改: 2020-08-24 17:37

libgcc CVE-2019-16276 中危 4.8.5-39.el7 golang: HTTP/1.1 headers with a space before the colon leads to filter bypass or request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16276

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-30 19:15 修改: 2023-11-07 03:05

libgcc CVE-2020-16845 中危 4.8.5-39.el7 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16845

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-08-06 18:15 修改: 2023-11-07 03:19

libgcc CVE-2020-24553 中危 4.8.5-39.el7 golang: default Content-Type setting in net/http/cgi and net/http/fcgi could cause XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24553

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-02 17:15 修改: 2023-11-07 03:20

libgcc CVE-2020-28362 中危 4.8.5-39.el7 golang: math/big: panic during recursive division of very large numbers

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28362

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libgcc CVE-2020-28366 中危 4.8.5-39.el7 golang: malicious symbol names can lead to code execution at build time

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28366

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libgcc CVE-2020-28367 中危 4.8.5-39.el7 golang: improper validation of cgo flags can lead to code execution at build time

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28367

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libgcc CVE-2021-27918 中危 4.8.5-39.el7 golang: encoding/xml: infinite loop when using xml.NewTokenDecoder with a custom TokenReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-11 00:15 修改: 2022-12-13 16:28

libgcc CVE-2021-42574 中危 4.8.5-39.el7 environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42574

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-01 04:15 修改: 2024-08-04 04:16

libgcrypt CVE-2014-5270 中危 1.5.3-14.el7 libgcrypt: ELGAMAL side-channel attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-5270

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-10 01:55 修改: 2017-11-04 01:29

libgcrypt CVE-2017-7526 中危 1.5.3-14.el7 libgcrypt: Use of left-to-right sliding window method allows full RSA key recovery

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7526

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-07-26 13:29 修改: 2023-11-07 02:50

libgcrypt CVE-2019-12904 中危 1.5.3-14.el7 Libgcrypt: physical addresses being available to other processes leads to a flush-and-reload side-channel attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12904

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-20 00:15 修改: 2024-08-05 00:15

libgcrypt CVE-2021-33560 中危 1.5.3-14.el7 libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35

libgcrypt CVE-2021-40528 中危 1.5.3-14.el7 libgcrypt: ElGamal implementation allows plaintext recovery

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38

libgcrypt CVE-2024-2236 中危 1.5.3-14.el7 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15

libjpeg-turbo CVE-2019-2201 中危 1.2.90-8.el7 libjpeg-turbo: several integer overflows and subsequent segfaults when attempting to compress/decompress gigapixel images

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2201

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-11-13 18:15 修改: 2023-11-07 03:09

libjpeg-turbo CVE-2020-13790 中危 1.2.90-8.el7 libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13790

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-06-03 19:15 修改: 2023-11-07 03:16

libjpeg-turbo CVE-2020-17541 中危 1.2.90-8.el7 libjpeg-turbo: Stack-based buffer overflow in the "transform" component

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17541

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-06-01 15:15 修改: 2022-11-07 14:29

libjpeg-turbo CVE-2021-29390 中危 1.2.90-8.el7 libjpeg-turbo: heap-buffer-overflow vulnerability in decompress_smooth_data in jdcoefct.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29390

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:32

libmount CVE-2014-9114 中危 2.23.2-61.el7_7.1 util-linux: command injection flaw in blkid

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9114

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-31 16:59 修改: 2023-11-07 02:22

libmount CVE-2016-2779 中危 2.23.2-61.el7_7.1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14

libmount CVE-2020-21583 中危 2.23.2-61.el7_7.1 util-linux: arbitrary commands execution via the path parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2024-10-07 19:36

libmount CVE-2022-0563 中危 2.23.2-61.el7_7.1 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15

libsepol CVE-2021-36084 中危 2.5-10.el7 libsepol: use-after-free in __cil_verify_classperms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36

libsepol CVE-2021-36085 中危 2.5-10.el7 libsepol: use-after-free in __cil_verify_classperms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36

libsepol CVE-2021-36086 中危 2.5-10.el7 libsepol: use-after-free in cil_reset_classpermission()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36

libsepol CVE-2021-36087 中危 2.5-10.el7 libsepol: heap-based buffer overflow in ebitmap_match_any()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36

libssh2 CVE-2019-13115 中危 1.8.0-3.el7 libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13115

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-16 18:15 修改: 2023-11-07 03:03

libssh2 CVE-2019-17498 中危 1.8.0-3.el7 1.8.0-4.el7 libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17498

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-21 22:15 修改: 2023-11-07 03:06

libssh2 CVE-2019-3859 中危 1.8.0-3.el7 libssh2: Unchecked use of _libssh2_packet_require and _libssh2_packet_requirev resulting in out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3859

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-03-21 16:01 修改: 2023-11-07 03:10

libssh2 CVE-2019-3860 中危 1.8.0-3.el7 libssh2: Out-of-bounds reads with specially crafted SFTP packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3860

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-03-25 19:29 修改: 2023-11-07 03:10

libssh2 CVE-2020-22218 中危 1.8.0-3.el7 1.8.0-4.el7_9.1 libssh2: use-of-uninitialized-value in _libssh2_transport_read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-22218

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-10-06 15:15

libssh2 CVE-2023-2283 中危 1.8.0-3.el7 libssh: authorization bypass in pki_verify_data_signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15

libssh2 CVE-2023-48795 中危 1.8.0-3.el7 ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15

libstdc++ CVE-2014-5044 中危 4.8.5-39.el7 gcc: integer overflow flaws in libgfortran

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-5044

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-03-07 15:29 修改: 2018-03-27 23:48

libstdc++ CVE-2018-20673 中危 4.8.5-39.el7 libiberty: Integer overflow in demangle_template() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20673

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-01-04 18:29 修改: 2020-08-24 17:37

libstdc++ CVE-2019-16276 中危 4.8.5-39.el7 golang: HTTP/1.1 headers with a space before the colon leads to filter bypass or request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16276

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-30 19:15 修改: 2023-11-07 03:05

libstdc++ CVE-2020-16845 中危 4.8.5-39.el7 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16845

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-08-06 18:15 修改: 2023-11-07 03:19

libstdc++ CVE-2020-24553 中危 4.8.5-39.el7 golang: default Content-Type setting in net/http/cgi and net/http/fcgi could cause XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24553

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-02 17:15 修改: 2023-11-07 03:20

libstdc++ CVE-2020-28362 中危 4.8.5-39.el7 golang: math/big: panic during recursive division of very large numbers

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28362

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libstdc++ CVE-2020-28366 中危 4.8.5-39.el7 golang: malicious symbol names can lead to code execution at build time

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28366

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libstdc++ CVE-2020-28367 中危 4.8.5-39.el7 golang: improper validation of cgo flags can lead to code execution at build time

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28367

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-11-18 17:15 修改: 2023-11-07 03:21

libstdc++ CVE-2021-27918 中危 4.8.5-39.el7 golang: encoding/xml: infinite loop when using xml.NewTokenDecoder with a custom TokenReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-11 00:15 修改: 2022-12-13 16:28

libstdc++ CVE-2021-42574 中危 4.8.5-39.el7 environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-42574

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-01 04:15 修改: 2024-08-04 04:16

libtasn1 CVE-2016-4008 中危 4.10-1.el7 libtasn1: infinite loop while parsing DER certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4008

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-05-05 18:59 修改: 2023-11-07 02:32

libtasn1 CVE-2018-6003 中危 4.10-1.el7 libtasn1: Stack exhaustion due to indefinite recursion during BER decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6003

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-01-22 20:29 修改: 2023-11-07 02:58

libtasn1 CVE-2021-46848 中危 4.10-1.el7 libtasn1: Out-of-bound access in ETYPE_OK

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46848

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-24 14:15 修改: 2023-11-07 03:40

libuuid CVE-2014-9114 中危 2.23.2-61.el7_7.1 util-linux: command injection flaw in blkid

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9114

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-31 16:59 修改: 2023-11-07 02:22

libuuid CVE-2016-2779 中危 2.23.2-61.el7_7.1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14

libuuid CVE-2020-21583 中危 2.23.2-61.el7_7.1 util-linux: arbitrary commands execution via the path parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2024-10-07 19:36

libuuid CVE-2022-0563 中危 2.23.2-61.el7_7.1 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15

libxml2 CVE-2015-8035 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: DoS caused by incorrect error detection during XZ decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8035

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-18 16:59 修改: 2019-03-08 16:06

libxml2 CVE-2016-3709 中危 2.9.1-6.el7_2.3 libxml2: Incorrect server side include parsing can lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39

libxml2 CVE-2016-4483 中危 2.9.1-6.el7_2.3 libxml2: out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4483

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-11 16:59 修改: 2023-11-07 02:32

libxml2 CVE-2016-4658 中危 2.9.1-6.el7_2.3 2.9.1-6.el7_9.6 libxml2: Use after free via namespace node in XPointer ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4658

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-25 10:59 修改: 2019-03-13 14:05

libxml2 CVE-2016-5131 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Use after free triggered by XPointer paths beginning with range-to

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-5131

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-07-23 19:59 修改: 2023-11-07 02:32

libxml2 CVE-2016-9318 中危 2.9.1-6.el7_2.3 libxml2: XML External Entity vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15

libxml2 CVE-2017-0663 中危 2.9.1-6.el7_2.3 libxml2: Heap buffer overflow in xmlAddID

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-0663

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-14 13:29 修改: 2023-11-07 02:37

libxml2 CVE-2017-15412 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Use after free in xmlXPathCompOpEvalPositionalPredicate() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15412

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-28 19:29 修改: 2023-11-07 02:39

libxml2 CVE-2017-16931 中危 2.9.1-6.el7_2.3 libxml2: Mishandling parameter-entity references

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16931

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-23 21:29 修改: 2021-07-20 23:15

libxml2 CVE-2017-16932 中危 2.9.1-6.el7_2.3 libxml2: Infinite recursion in parameter entities

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40

libxml2 CVE-2017-7375 中危 2.9.1-6.el7_2.3 libxml2: Missing validation for external entities in xmlParsePEReference

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7375

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-02-19 19:29 修改: 2018-03-18 14:17

libxml2 CVE-2017-9047 中危 2.9.1-6.el7_2.3 libxml2: Buffer overflow in function xmlSnprintfElementContent

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9047

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2 CVE-2017-9049 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer over-read in function xmlDictComputeFastKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2 CVE-2017-9050 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer over-read in function xmlDictAddString

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9050

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2 CVE-2018-14404 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14404

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-07-19 13:29 修改: 2020-09-10 01:15

libxml2 CVE-2019-19956 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19956

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07

libxml2 CVE-2019-20388 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20388

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-21 23:15 修改: 2023-11-09 14:44

libxml2 CVE-2020-24977 中危 2.9.1-6.el7_2.3 libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24977

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-04 00:15 修改: 2023-11-07 03:20

libxml2 CVE-2020-7595 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7595

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-21 23:15 修改: 2023-11-07 03:26

libxml2 CVE-2021-3516 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3516

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-06-01 14:15 修改: 2023-11-07 03:38

libxml2 CVE-2021-3517 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38

libxml2 CVE-2021-3518 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38

libxml2 CVE-2021-3537 中危 2.9.1-6.el7_2.3 libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38

libxml2 CVE-2021-3541 中危 2.9.1-6.el7_2.3 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25

libxml2 CVE-2022-23308 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free of ID and IDREF attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44

libxml2 CVE-2022-29824 中危 2.9.1-6.el7_2.3 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46

libxml2 CVE-2022-40303 中危 2.9.1-6.el7_2.3 libxml2: integer overflows with XML_PARSE_HUGE

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52

libxml2 CVE-2022-40304 中危 2.9.1-6.el7_2.3 libxml2: dict corruption caused by entity reference cycles

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52

libxml2 CVE-2023-28484 中危 2.9.1-6.el7_2.3 libxml2: NULL dereference in xmlSchemaFixupComplexType

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15

libxml2 CVE-2023-29469 中危 2.9.1-6.el7_2.3 libxml2: Hashing of empty dict strings isn't deterministic

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15

libxml2 CVE-2023-39615 中危 2.9.1-6.el7_2.3 libxml2: crafted xml can cause global buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15

libxml2 CVE-2024-25062 中危 2.9.1-6.el7_2.3 libxml2: use-after-free in XMLReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40

libxml2-python CVE-2015-8035 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: DoS caused by incorrect error detection during XZ decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8035

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-18 16:59 修改: 2019-03-08 16:06

libxml2-python CVE-2016-3709 中危 2.9.1-6.el7_2.3 libxml2: Incorrect server side include parsing can lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39

libxml2-python CVE-2016-4483 中危 2.9.1-6.el7_2.3 libxml2: out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4483

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-11 16:59 修改: 2023-11-07 02:32

libxml2-python CVE-2016-4658 中危 2.9.1-6.el7_2.3 2.9.1-6.el7_9.6 libxml2: Use after free via namespace node in XPointer ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4658

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-25 10:59 修改: 2019-03-13 14:05

libxml2-python CVE-2016-5131 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Use after free triggered by XPointer paths beginning with range-to

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-5131

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-07-23 19:59 修改: 2023-11-07 02:32

libxml2-python CVE-2016-9318 中危 2.9.1-6.el7_2.3 libxml2: XML External Entity vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15

libxml2-python CVE-2017-0663 中危 2.9.1-6.el7_2.3 libxml2: Heap buffer overflow in xmlAddID

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-0663

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-14 13:29 修改: 2023-11-07 02:37

libxml2-python CVE-2017-15412 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Use after free in xmlXPathCompOpEvalPositionalPredicate() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15412

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-28 19:29 修改: 2023-11-07 02:39

libxml2-python CVE-2017-16931 中危 2.9.1-6.el7_2.3 libxml2: Mishandling parameter-entity references

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16931

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-23 21:29 修改: 2021-07-20 23:15

libxml2-python CVE-2017-16932 中危 2.9.1-6.el7_2.3 libxml2: Infinite recursion in parameter entities

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40

libxml2-python CVE-2017-7375 中危 2.9.1-6.el7_2.3 libxml2: Missing validation for external entities in xmlParsePEReference

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7375

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-02-19 19:29 修改: 2018-03-18 14:17

libxml2-python CVE-2017-9047 中危 2.9.1-6.el7_2.3 libxml2: Buffer overflow in function xmlSnprintfElementContent

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9047

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2-python CVE-2017-9049 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer over-read in function xmlDictComputeFastKey

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2-python CVE-2017-9050 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer over-read in function xmlDictAddString

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9050

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2-python CVE-2018-14404 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14404

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-07-19 13:29 修改: 2020-09-10 01:15

libxml2-python CVE-2019-19956 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19956

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07

libxml2-python CVE-2019-20388 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20388

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-21 23:15 修改: 2023-11-09 14:44

libxml2-python CVE-2020-24977 中危 2.9.1-6.el7_2.3 libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24977

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-04 00:15 修改: 2023-11-07 03:20

libxml2-python CVE-2020-7595 中危 2.9.1-6.el7_2.3 2.9.1-6.el7.5 libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7595

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-21 23:15 修改: 2023-11-07 03:26

libxml2-python CVE-2021-3516 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3516

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-06-01 14:15 修改: 2023-11-07 03:38

libxml2-python CVE-2021-3517 中危 2.9.1-6.el7_2.3 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38

libxml2-python CVE-2021-3518 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38

libxml2-python CVE-2021-3537 中危 2.9.1-6.el7_2.3 libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38

libxml2-python CVE-2021-3541 中危 2.9.1-6.el7_2.3 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25

libxml2-python CVE-2022-23308 中危 2.9.1-6.el7_2.3 libxml2: Use-after-free of ID and IDREF attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44

libxml2-python CVE-2022-29824 中危 2.9.1-6.el7_2.3 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46

libxml2-python CVE-2022-40303 中危 2.9.1-6.el7_2.3 libxml2: integer overflows with XML_PARSE_HUGE

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52

libxml2-python CVE-2022-40304 中危 2.9.1-6.el7_2.3 libxml2: dict corruption caused by entity reference cycles

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52

libxml2-python CVE-2023-28484 中危 2.9.1-6.el7_2.3 libxml2: NULL dereference in xmlSchemaFixupComplexType

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15

libxml2-python CVE-2023-29469 中危 2.9.1-6.el7_2.3 libxml2: Hashing of empty dict strings isn't deterministic

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15

libxml2-python CVE-2023-39615 中危 2.9.1-6.el7_2.3 libxml2: crafted xml can cause global buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15

libxml2-python CVE-2024-25062 中危 2.9.1-6.el7_2.3 libxml2: use-after-free in XMLReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40

libxslt CVE-2015-7995 中危 1.1.28-5.el7 libxslt: Type confusion may cause DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-7995

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-17 15:59 修改: 2019-03-08 16:06

libxslt CVE-2016-1683 中危 1.1.28-5.el7 chromium-browser: out-of-bounds access in libxslt

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1683

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-06-05 23:59 修改: 2023-11-07 02:30

libxslt CVE-2016-1684 中危 1.1.28-5.el7 chromium-browser: integer overflow in libxslt

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1684

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-06-05 23:59 修改: 2023-11-07 02:30

libxslt CVE-2016-1841 中危 1.1.28-5.el7 libxslt: Use after free in xsltDocumentFunctionLoadDocument

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1841

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-05-20 10:59 修改: 2023-11-07 02:30

libxslt CVE-2016-4607 中危 1.1.28-5.el7 libxslt: allows remote attacker to cause denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4607

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-07-22 02:59 修改: 2023-11-07 02:32

libxslt CVE-2016-4608 中危 1.1.28-5.el7 libxslt: stack-based buffer overflow at exsltDateFormat()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4608

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-07-22 02:59 修改: 2023-11-07 02:32

libxslt CVE-2016-4609 中危 1.1.28-5.el7 libxslt: Out-of-bounds read at xmlGetLineNoInternal()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4609

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-07-22 02:59 修改: 2023-11-07 02:32

libxslt CVE-2016-4610 中危 1.1.28-5.el7 libxslt: Invalid memory access leading to DoS at exsltDynMapFunction()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4610

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-07-22 02:59 修改: 2023-11-07 02:32

libxslt CVE-2016-4738 中危 1.1.28-5.el7 libxslt: Heap overread due to an empty decimal-separator

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4738

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-09-25 10:59 修改: 2023-11-07 02:32

libxslt CVE-2019-11068 中危 1.1.28-5.el7 1.1.28-6.el7 libxslt: xsltCheckRead and xsltCheckWrite routines security bypass by crafted URL

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11068

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-04-10 20:29 修改: 2023-11-07 03:02

libxslt CVE-2019-18197 中危 1.1.28-5.el7 1.1.28-6.el7 libxslt: use after free in xsltCopyText in transform.c could lead to information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18197

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-10-18 21:15 修改: 2020-08-24 17:37

lua CVE-2014-5461 中危 5.1.4-15.el7 lua: overflow flaw in vararg functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-5461

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-04 17:55 修改: 2023-05-03 12:15

lua CVE-2021-43519 中危 5.1.4-15.el7 lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43519

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-09 13:15 修改: 2023-11-07 03:39

lz4 CVE-2019-17543 中危 1.7.5-3.el7 lz4: heap-based buffer overflow in LZ4_write32

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06

lz4 CVE-2021-3520 中危 1.7.5-3.el7 lz4: memory corruption due to an integer overflow bug caused by memmove argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25

ncurses CVE-2017-10684 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in fmt_entry function in dump_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10684

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2023-11-07 02:38

ncurses CVE-2017-10685 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow caused by format string vulnerability in fmt_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10685

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2019-10-03 00:03

ncurses CVE-2019-17594 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13

ncurses CVE-2019-17595 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52

ncurses CVE-2023-29491 中危 5.9-14.20130511.el7_4 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15

ncurses-base CVE-2017-10684 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in fmt_entry function in dump_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10684

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-10685 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow caused by format string vulnerability in fmt_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10685

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2019-10-03 00:03

ncurses-base CVE-2019-17594 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13

ncurses-base CVE-2019-17595 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52

ncurses-base CVE-2023-29491 中危 5.9-14.20130511.el7_4 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15

ncurses-libs CVE-2017-10684 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in fmt_entry function in dump_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10684

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-10685 中危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow caused by format string vulnerability in fmt_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10685

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-06-29 23:29 修改: 2019-10-03 00:03

ncurses-libs CVE-2019-17594 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13

ncurses-libs CVE-2019-17595 中危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52

ncurses-libs CVE-2023-29491 中危 5.9-14.20130511.el7_4 ncurses: Local users can trigger security-relevant memory corruption via malformed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15

nspr CVE-2016-1951 中危 4.21.0-1.el7 nspr: Memory allocation issue related to PR_*printf functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1951

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-08-07 19:59 修改: 2016-11-28 20:02

nspr CVE-2019-11719 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nspr CVE-2019-11756 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nspr CVE-2019-17006 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nspr CVE-2020-12400 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nspr CVE-2020-12401 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nspr CVE-2020-12402 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nspr CVE-2020-12403 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nspr CVE-2020-6829 中危 4.21.0-1.el7 4.25.0-2.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

curl CVE-2020-8285 中危 7.29.0-54.el7_7.2 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47

curl CVE-2021-22876 中危 7.29.0-54.el7_7.2 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47

curl CVE-2021-22924 中危 7.29.0-54.el7_7.2 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11

nss CVE-2015-2808 中危 3.44.0-7.el7_7 SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2808

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-04-01 02:00 修改: 2023-09-07 17:15

nss CVE-2016-2183 中危 3.44.0-7.el7_7 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2183

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-09-01 00:59 修改: 2023-02-12 23:17

nss CVE-2016-9074 中危 3.44.0-7.el7_7 nss: Insufficient timing side-channel resistance in divSpoiler

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9074

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-11 21:29 修改: 2018-08-09 15:12

nss CVE-2016-9574 中危 3.44.0-7.el7_7 nss: Remote DoS during session handshake when using SessionTicket extention and ECDHE-ECDSA

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9574

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-19 13:29 修改: 2023-11-07 02:37

nss CVE-2018-18508 中危 3.44.0-7.el7_7 nss: NULL pointer dereference in several CMS functions resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18508

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-02-18 15:20

nss CVE-2019-11719 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss CVE-2019-11756 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss CVE-2019-17006 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss CVE-2020-12400 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss CVE-2020-12401 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss CVE-2020-12402 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss CVE-2020-12403 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss CVE-2020-25648 中危 3.44.0-7.el7_7 3.53.1-7.el7_9 nss: TLS 1.3 CCS flood remote DoS Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25648

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-20 22:15 修改: 2023-11-07 03:20

nss CVE-2020-6829 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

nss CVE-2023-5388 中危 3.44.0-7.el7_7 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-03-19 12:15 修改: 2024-11-14 22:35

nss CVE-2023-6135 中危 3.44.0-7.el7_7 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15

nss CVE-2024-6602 中危 3.44.0-7.el7_7 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15

nss-softokn CVE-2015-2613 中危 3.44.0-8.el7_7 JCE: missing EC parameter validation in ECDH_Derive() (OpenJDK JCE, 8075833)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2613

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-07-16 10:59 修改: 2022-05-13 14:38

nss-softokn CVE-2017-7781 中危 3.44.0-8.el7_7 Mozilla: Elliptic curve point addition error when using mixed Jacobian-affine coordinates (MFSA 2017-18)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-11 21:29 修改: 2019-10-03 00:03

nss-softokn CVE-2019-11719 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss-softokn CVE-2019-11756 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss-softokn CVE-2019-17006 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss-softokn CVE-2020-12400 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-softokn CVE-2020-12401 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-softokn CVE-2020-12402 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss-softokn CVE-2020-12403 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss-softokn CVE-2020-6829 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

nss-softokn-freebl CVE-2015-2613 中危 3.44.0-8.el7_7 JCE: missing EC parameter validation in ECDH_Derive() (OpenJDK JCE, 8075833)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2613

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-07-16 10:59 修改: 2022-05-13 14:38

nss-softokn-freebl CVE-2017-7781 中危 3.44.0-8.el7_7 Mozilla: Elliptic curve point addition error when using mixed Jacobian-affine coordinates (MFSA 2017-18)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-11 21:29 修改: 2019-10-03 00:03

nss-softokn-freebl CVE-2019-11719 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss-softokn-freebl CVE-2019-11756 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss-softokn-freebl CVE-2019-17006 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss-softokn-freebl CVE-2020-12400 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-softokn-freebl CVE-2020-12401 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-softokn-freebl CVE-2020-12402 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss-softokn-freebl CVE-2020-12403 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss-softokn-freebl CVE-2020-6829 中危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

curl CVE-2021-22946 中危 7.29.0-54.el7_7.2 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12

curl CVE-2021-22947 中危 7.29.0-54.el7_7.2 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03

curl CVE-2022-27774 中危 7.29.0-54.el7_7.2 curl: credential leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

nss-sysinit CVE-2015-2808 中危 3.44.0-7.el7_7 SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2808

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-04-01 02:00 修改: 2023-09-07 17:15

nss-sysinit CVE-2016-2183 中危 3.44.0-7.el7_7 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2183

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-09-01 00:59 修改: 2023-02-12 23:17

nss-sysinit CVE-2016-9074 中危 3.44.0-7.el7_7 nss: Insufficient timing side-channel resistance in divSpoiler

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9074

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-11 21:29 修改: 2018-08-09 15:12

nss-sysinit CVE-2016-9574 中危 3.44.0-7.el7_7 nss: Remote DoS during session handshake when using SessionTicket extention and ECDHE-ECDSA

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9574

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-19 13:29 修改: 2023-11-07 02:37

nss-sysinit CVE-2018-18508 中危 3.44.0-7.el7_7 nss: NULL pointer dereference in several CMS functions resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18508

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-02-18 15:20

nss-sysinit CVE-2019-11719 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss-sysinit CVE-2019-11756 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss-sysinit CVE-2019-17006 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss-sysinit CVE-2020-12400 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-sysinit CVE-2020-12401 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-sysinit CVE-2020-12402 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss-sysinit CVE-2020-12403 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss-sysinit CVE-2020-25648 中危 3.44.0-7.el7_7 3.53.1-7.el7_9 nss: TLS 1.3 CCS flood remote DoS Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25648

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-20 22:15 修改: 2023-11-07 03:20

nss-sysinit CVE-2020-6829 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

nss-sysinit CVE-2023-5388 中危 3.44.0-7.el7_7 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-03-19 12:15 修改: 2024-11-14 22:35

nss-sysinit CVE-2023-6135 中危 3.44.0-7.el7_7 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15

nss-sysinit CVE-2024-6602 中危 3.44.0-7.el7_7 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15

curl CVE-2022-27776 中危 7.29.0-54.el7_7.2 curl: auth/cookie leak on redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

curl CVE-2022-27778 中危 7.29.0-54.el7_7.2 curl: removes wrong file on error

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27778

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

curl CVE-2022-27779 中危 7.29.0-54.el7_7.2 curl: cookie for trailing dot TLD

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02

nss-tools CVE-2015-2808 中危 3.44.0-7.el7_7 SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2808

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-04-01 02:00 修改: 2023-09-07 17:15

nss-tools CVE-2016-2183 中危 3.44.0-7.el7_7 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2183

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-09-01 00:59 修改: 2023-02-12 23:17

nss-tools CVE-2016-9074 中危 3.44.0-7.el7_7 nss: Insufficient timing side-channel resistance in divSpoiler

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9074

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-11 21:29 修改: 2018-08-09 15:12

nss-tools CVE-2016-9574 中危 3.44.0-7.el7_7 nss: Remote DoS during session handshake when using SessionTicket extention and ECDHE-ECDSA

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9574

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-19 13:29 修改: 2023-11-07 02:37

nss-tools CVE-2018-18508 中危 3.44.0-7.el7_7 nss: NULL pointer dereference in several CMS functions resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18508

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-02-18 15:20

nss-tools CVE-2019-11719 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss-tools CVE-2019-11756 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss-tools CVE-2019-17006 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss-tools CVE-2020-12400 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-tools CVE-2020-12401 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-tools CVE-2020-12402 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss-tools CVE-2020-12403 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss-tools CVE-2020-25648 中危 3.44.0-7.el7_7 3.53.1-7.el7_9 nss: TLS 1.3 CCS flood remote DoS Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25648

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-20 22:15 修改: 2023-11-07 03:20

nss-tools CVE-2020-6829 中危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

nss-tools CVE-2023-5388 中危 3.44.0-7.el7_7 nss: timing attack against RSA decryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5388

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-03-19 12:15 修改: 2024-11-14 22:35

nss-tools CVE-2023-6135 中危 3.44.0-7.el7_7 nss: vulnerable to Minerva side-channel information leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6135

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-12-19 14:15 修改: 2024-01-07 11:15

nss-tools CVE-2024-6602 中危 3.44.0-7.el7_7 Mozilla: Memory corruption in NSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6602

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-09 15:15 修改: 2024-07-16 18:15

nss-util CVE-2019-11719 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15

nss-util CVE-2019-11756 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: Use-after-free in sftk_FreeSession due to improper refcounting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 20:15 修改: 2020-01-13 18:02

nss-util CVE-2019-17006 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39

nss-util CVE-2020-12400 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-util CVE-2020-12401 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15

nss-util CVE-2020-12402 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15

nss-util CVE-2020-12403 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15

nss-util CVE-2020-6829 中危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15

openldap CVE-2019-13057 中危 2.4.44-21.el7_6 openldap: Information disclosure issue in slapd component

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13057

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-26 13:15 修改: 2022-06-13 18:38

openldap CVE-2019-13565 中危 2.4.44-21.el7_6 openldap: ACL restrictions bypass due to sasl_ssf value being set permanently

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13565

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-26 13:15 修改: 2023-11-07 03:03

openldap CVE-2020-12243 中危 2.4.44-21.el7_6 2.4.44-22.el7 openldap: denial of service via nested boolean expressions in LDAP search filters

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24

openldap CVE-2020-25692 中危 2.4.44-21.el7_6 2.4.44-23.el7_9 openldap: NULL pointer dereference for unauthenticated packet in slapd

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27

openldap CVE-2020-25709 中危 2.4.44-21.el7_6 2.4.44-25.el7_9 openldap: assertion failure in Certificate List syntax validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20

openldap CVE-2020-25710 中危 2.4.44-21.el7_6 2.4.44-25.el7_9 openldap: assertion failure in CSN normalization with invalid input

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20

openldap CVE-2020-36221 中危 2.4.44-21.el7_6 openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36222 中危 2.4.44-21.el7_6 openldap: Assertion failure in slapd in the saslAuthzTo validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36223 中危 2.4.44-21.el7_6 openldap: Out-of-bounds read in Values Return Filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36224 中危 2.4.44-21.el7_6 openldap: Invalid pointer free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36225 中危 2.4.44-21.el7_6 openldap: Double free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36226 中危 2.4.44-21.el7_6 openldap: Denial of service via length miscalculation in slap_parse_user

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36227 中危 2.4.44-21.el7_6 openldap: Infinite loop in slapd with the cancel_extop Cancel operation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36228 中危 2.4.44-21.el7_6 openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36229 中危 2.4.44-21.el7_6 openldap: Type confusion in ad_keystring in ad.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2020-36230 中危 2.4.44-21.el7_6 openldap: Assertion failure in ber_next_element in decode.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22

openldap CVE-2021-27212 中危 2.4.44-21.el7_6 openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31

openldap CVE-2022-29155 中危 2.4.44-21.el7_6 openldap: OpenLDAP SQL injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56

curl CVE-2022-27780 中危 7.29.0-54.el7_7.2 curl: percent-encoded path separator in URL host

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27780

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-08-07 19:35

curl CVE-2022-27782 中危 7.29.0-54.el7_7.2 curl: TLS and SSH connection too eager reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

curl CVE-2022-30115 中危 7.29.0-54.el7_7.2 curl: HSTS bypass via trailing dot

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30115

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

openssl-libs CVE-2015-2808 中危 1:1.0.2k-19.el7 SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2808

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-04-01 02:00 修改: 2023-09-07 17:15

openssl-libs CVE-2019-1547 中危 1:1.0.2k-19.el7 openssl: side-channel weak encryption vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1547

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-10 17:15 修改: 2024-06-21 19:15

openssl-libs CVE-2021-23840 中危 1:1.0.2k-19.el7 1:1.0.2k-22.el7_9 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15

openssl-libs CVE-2021-23841 中危 1:1.0.2k-19.el7 1:1.0.2k-22.el7_9 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15

openssl-libs CVE-2021-3712 中危 1:1.0.2k-19.el7 1:1.0.2k-23.el7_9 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15

openssl-libs CVE-2022-1292 中危 1:1.0.2k-19.el7 openssl: c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41

openssl-libs CVE-2022-2068 中危 1:1.0.2k-19.el7 openssl: the c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2068

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-21 15:15 修改: 2023-11-07 03:46

openssl-libs CVE-2022-4304 中危 1:1.0.2k-19.el7 openssl: timing attack in RSA Decryption implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15

openssl-libs CVE-2023-0215 中危 1:1.0.2k-19.el7 openssl: use-after-free following BIO_new_NDEF

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15

openssl-libs CVE-2023-2650 中危 1:1.0.2k-19.el7 openssl: Possible DoS translating ASN.1 object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15

openssl-libs CVE-2024-6119 中危 1:1.0.2k-19.el7 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35

p11-kit CVE-2020-29361 中危 0.23.5-3.el7 p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21

p11-kit CVE-2020-29362 中危 0.23.5-3.el7 p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50

p11-kit-trust CVE-2020-29361 中危 0.23.5-3.el7 p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21

p11-kit-trust CVE-2020-29362 中危 0.23.5-3.el7 p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50

curl CVE-2022-32208 中危 7.29.0-54.el7_7.2 curl: FTP-KRB bad message verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00

pam CVE-2024-10041 中危 1.1.8-22.el7 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-10-23 14:15 修改: 2024-11-25 00:15

pam CVE-2024-22365 中危 1.1.8-22.el7 pam: allowing unprivileged user to block another user namespace

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27

pcre CVE-2017-6004 中危 8.32-17.el7 pcre: Out-of-bounds read in compile_bracket_matchingpath function (8.41/3)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6004

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-16 11:59 修改: 2023-11-07 02:49

pcre CVE-2017-7186 中危 8.32-17.el7 pcre: Invalid Unicode property lookup (8.41/7, 10.24/2)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7186

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 00:59 修改: 2018-08-17 10:29

pcsc-lite-libs CVE-2016-10109 中危 1.8.8-8.el7 pcsc-lite: Use-after-free of cardsList due to SCardReleaseContext invocations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10109

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-23 20:59 修改: 2023-11-07 02:29

curl CVE-2022-43551 中危 7.29.0-54.el7_7.2 curl: HSTS bypass via IDN

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58

curl CVE-2023-27535 中危 7.29.0-54.el7_7.2 curl: FTP too eager connection reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47

python CVE-2007-4559 中危 2.7.5-86.el7 python: tarfile module directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15

python CVE-2013-1664 中危 2.7.5-86.el7 bindings: Internal entity expansion in Python XML libraries inflicts DoS vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-1664

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2013-04-03 00:55 修改: 2013-05-15 03:35

python CVE-2013-1665 中危 2.7.5-86.el7 bindings: External entity expansion in Python XML libraries inflicts potential security flaws and DoS vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-1665

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2013-04-03 00:55 修改: 2013-05-15 03:35

python CVE-2013-7040 中危 2.7.5-86.el7 python: hash secret can be recovered remotely

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53

python CVE-2017-1000158 中危 2.7.5-86.el7 python: Integer overflow in PyString_DecodeEscape results in heap-base buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000158

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-17 05:29 修改: 2023-02-16 14:15

python CVE-2018-20852 中危 2.7.5-86.el7 2.7.5-88.el7 python: Cookie domain check returns incorrect results

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20852

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-13 21:15 修改: 2023-11-07 02:56

python CVE-2019-16056 中危 2.7.5-86.el7 2.7.5-88.el7 python: email.utils.parseaddr wrongly parses email addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16056

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-06 18:15 修改: 2023-11-07 03:05

python CVE-2019-16935 中危 2.7.5-86.el7 2.7.5-89.el7 python: XSS vulnerability in the documentation XML-RPC server in server_title field

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16935

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-28 02:15 修改: 2023-11-07 03:06

python CVE-2019-18348 中危 2.7.5-86.el7 python: CRLF injection via the host part of the url passed to urlopen()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06

python CVE-2019-20907 中危 2.7.5-86.el7 2.7.5-90.el7 python: infinite loop in the tarfile module via crafted TAR archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09

python CVE-2020-10735 中危 2.7.5-86.el7 python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15

python CVE-2020-26116 中危 2.7.5-86.el7 2.7.5-92.el7_9 python: CRLF injection via HTTP request method in httplib/http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20

python CVE-2020-26137 中危 2.7.5-86.el7 2.7.5-92.el7_9 python-urllib3: CRLF injection via HTTP request method

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26137

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-30 18:15 修改: 2023-10-08 14:15

python CVE-2020-27619 中危 2.7.5-86.el7 python: Unsafe use of eval() on data retrieved via HTTP in the test suite

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15

python CVE-2020-8492 中危 2.7.5-86.el7 python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26

python CVE-2021-23336 中危 2.7.5-86.el7 python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30

python CVE-2021-3177 中危 2.7.5-86.el7 2.7.5-92.el7_9 python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37

python CVE-2021-3733 中危 2.7.5-86.el7 python: urllib: Regular expression DoS in AbstractBasicAuthHandler

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15

python CVE-2021-4189 中危 2.7.5-86.el7 python: ftplib should not use the host from the PASV response

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15

python CVE-2022-0391 中危 2.7.5-86.el7 python: urllib.parse does not sanitize URLs containing ASCII newline and tabs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41

python CVE-2022-45061 中危 2.7.5-86.el7 python: CPU denial of service via inefficient IDNA decoder

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54

python CVE-2022-48560 中危 2.7.5-86.el7 python: use after free in heappushpop() of heapq module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15

python CVE-2022-48565 中危 2.7.5-86.el7 python: XML External Entity in XML processing plistlib module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56

python CVE-2022-48566 中危 2.7.5-86.el7 python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04

python CVE-2023-27043 中危 2.7.5-86.el7 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27

python CVE-2024-0450 中危 2.7.5-86.el7 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15

python CVE-2024-11168 中危 2.7.5-86.el7 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-11-12 22:15 修改: 2024-11-13 17:01

python CVE-2024-6232 中危 2.7.5-86.el7 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15

python CVE-2024-6923 中危 2.7.5-86.el7 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15

python CVE-2024-8088 中危 2.7.5-86.el7 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15

python CVE-2024-9287 中危 2.7.5-86.el7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15

curl CVE-2023-27536 中危 7.29.0-54.el7_7.2 curl: GSS delegation too eager connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

curl CVE-2023-27538 中危 7.29.0-54.el7_7.2 curl: SSH connection too eager reuse still

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46

python-libs CVE-2007-4559 中危 2.7.5-86.el7 python: tarfile module directory traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15

python-libs CVE-2013-1664 中危 2.7.5-86.el7 bindings: Internal entity expansion in Python XML libraries inflicts DoS vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-1664

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2013-04-03 00:55 修改: 2013-05-15 03:35

python-libs CVE-2013-1665 中危 2.7.5-86.el7 bindings: External entity expansion in Python XML libraries inflicts potential security flaws and DoS vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-1665

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2013-04-03 00:55 修改: 2013-05-15 03:35

python-libs CVE-2013-7040 中危 2.7.5-86.el7 python: hash secret can be recovered remotely

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53

python-libs CVE-2017-1000158 中危 2.7.5-86.el7 python: Integer overflow in PyString_DecodeEscape results in heap-base buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000158

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-17 05:29 修改: 2023-02-16 14:15

python-libs CVE-2018-20852 中危 2.7.5-86.el7 2.7.5-88.el7 python: Cookie domain check returns incorrect results

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20852

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-13 21:15 修改: 2023-11-07 02:56

python-libs CVE-2019-16056 中危 2.7.5-86.el7 2.7.5-88.el7 python: email.utils.parseaddr wrongly parses email addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16056

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-06 18:15 修改: 2023-11-07 03:05

python-libs CVE-2019-16935 中危 2.7.5-86.el7 2.7.5-89.el7 python: XSS vulnerability in the documentation XML-RPC server in server_title field

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16935

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-28 02:15 修改: 2023-11-07 03:06

python-libs CVE-2019-18348 中危 2.7.5-86.el7 python: CRLF injection via the host part of the url passed to urlopen()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06

python-libs CVE-2019-20907 中危 2.7.5-86.el7 2.7.5-90.el7 python: infinite loop in the tarfile module via crafted TAR archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20907

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-07-13 13:15 修改: 2023-11-07 03:09

python-libs CVE-2020-10735 中危 2.7.5-86.el7 python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15

python-libs CVE-2020-26116 中危 2.7.5-86.el7 2.7.5-92.el7_9 python: CRLF injection via HTTP request method in httplib/http.client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26116

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-27 04:15 修改: 2023-11-07 03:20

python-libs CVE-2020-26137 中危 2.7.5-86.el7 2.7.5-92.el7_9 python-urllib3: CRLF injection via HTTP request method

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26137

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-30 18:15 修改: 2023-10-08 14:15

python-libs CVE-2020-27619 中危 2.7.5-86.el7 python: Unsafe use of eval() on data retrieved via HTTP in the test suite

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15

python-libs CVE-2020-8492 中危 2.7.5-86.el7 python: wrong backtracking in urllib.request.AbstractBasicAuthHandler allows for a ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8492

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-30 19:15 修改: 2023-11-07 03:26

python-libs CVE-2021-23336 中危 2.7.5-86.el7 python: Web cache poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a semicolon in query parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23336

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 13:15 修改: 2023-11-07 03:30

python-libs CVE-2021-3177 中危 2.7.5-86.el7 2.7.5-92.el7_9 python: Stack-based buffer overflow in PyCArg_repr in _ctypes/callproc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3177

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-01-19 06:15 修改: 2023-11-07 03:37

python-libs CVE-2021-3733 中危 2.7.5-86.el7 python: urllib: Regular expression DoS in AbstractBasicAuthHandler

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3733

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-10 17:42 修改: 2023-06-30 23:15

python-libs CVE-2021-4189 中危 2.7.5-86.el7 python: ftplib should not use the host from the PASV response

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-24 16:15 修改: 2023-06-30 23:15

python-libs CVE-2022-0391 中危 2.7.5-86.el7 python: urllib.parse does not sanitize URLs containing ASCII newline and tabs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0391

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-02-09 23:15 修改: 2023-11-07 03:41

python-libs CVE-2022-45061 中危 2.7.5-86.el7 python: CPU denial of service via inefficient IDNA decoder

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54

python-libs CVE-2022-48560 中危 2.7.5-86.el7 python: use after free in heappushpop() of heapq module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15

python-libs CVE-2022-48565 中危 2.7.5-86.el7 python: XML External Entity in XML processing plistlib module

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48565

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-11-07 03:56

python-libs CVE-2022-48566 中危 2.7.5-86.el7 python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48566

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-10-13 17:04

python-libs CVE-2023-27043 中危 2.7.5-86.el7 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27

python-libs CVE-2024-0450 中危 2.7.5-86.el7 python: The zipfile module is vulnerable to zip-bombs leading to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15

python-libs CVE-2024-11168 中危 2.7.5-86.el7 python: Improper validation of IPv6 and IPvFuture addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11168

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-11-12 22:15 修改: 2024-11-13 17:01

python-libs CVE-2024-6232 中危 2.7.5-86.el7 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15

python-libs CVE-2024-6923 中危 2.7.5-86.el7 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15

python-libs CVE-2024-8088 中危 2.7.5-86.el7 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15

python-libs CVE-2024-9287 中危 2.7.5-86.el7 python: Virtual environment (venv) activation scripts don't quote paths

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15

python-lxml CVE-2018-19787 中危 3.2.1-4.el7 python-lxml: XSS in lxml.html.clean module in lxml/html/clean.py

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19787

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-12-02 10:29 修改: 2020-11-26 21:15

python-lxml CVE-2020-27783 中危 3.2.1-4.el7 python-lxml: mXSS due to the use of improper parser

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27783

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:21

python-lxml CVE-2021-28957 中危 3.2.1-4.el7 python-lxml: Missing input sanitization for formaction HTML5 attributes may lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28957

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-03-21 05:15 修改: 2023-11-07 03:32

python-lxml CVE-2021-43818 中危 3.2.1-4.el7 python-lxml: HTML Cleaner allows crafted and SVG embedded scripts to pass through

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43818

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:39

rpm CVE-2017-7500 中危 4.11.3-40.el7 rpm: Following symlinks to directories when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7500

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-13 17:29 修改: 2019-10-09 23:29

rpm CVE-2017-7501 中危 4.11.3-40.el7 rpm: Following symlinks to files when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7501

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:50

rpm CVE-2021-20271 中危 4.11.3-40.el7 4.11.3-48.el7_9 rpm: Signature checks bypass via corrupted rpm package

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15

rpm CVE-2021-3421 中危 4.11.3-40.el7 rpm: unsigned signature header leads to string injection into an rpm database

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37

rpm CVE-2021-3521 中危 4.11.3-40.el7 rpm: RPM does not require subkeys to have a valid binding signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41

rpm CVE-2021-35937 中危 4.11.3-40.el7 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36

rpm CVE-2021-35938 中危 4.11.3-40.el7 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06

rpm CVE-2021-35939 中危 4.11.3-40.el7 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16

rpm-build-libs CVE-2017-7500 中危 4.11.3-40.el7 rpm: Following symlinks to directories when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7500

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-13 17:29 修改: 2019-10-09 23:29

rpm-build-libs CVE-2017-7501 中危 4.11.3-40.el7 rpm: Following symlinks to files when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7501

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:50

rpm-build-libs CVE-2021-20271 中危 4.11.3-40.el7 4.11.3-48.el7_9 rpm: Signature checks bypass via corrupted rpm package

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15

rpm-build-libs CVE-2021-3421 中危 4.11.3-40.el7 rpm: unsigned signature header leads to string injection into an rpm database

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37

rpm-build-libs CVE-2021-3521 中危 4.11.3-40.el7 rpm: RPM does not require subkeys to have a valid binding signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41

rpm-build-libs CVE-2021-35937 中危 4.11.3-40.el7 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36

rpm-build-libs CVE-2021-35938 中危 4.11.3-40.el7 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06

rpm-build-libs CVE-2021-35939 中危 4.11.3-40.el7 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16

rpm-libs CVE-2017-7500 中危 4.11.3-40.el7 rpm: Following symlinks to directories when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7500

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-13 17:29 修改: 2019-10-09 23:29

rpm-libs CVE-2017-7501 中危 4.11.3-40.el7 rpm: Following symlinks to files when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7501

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:50

rpm-libs CVE-2021-20271 中危 4.11.3-40.el7 4.11.3-48.el7_9 rpm: Signature checks bypass via corrupted rpm package

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15

rpm-libs CVE-2021-3421 中危 4.11.3-40.el7 rpm: unsigned signature header leads to string injection into an rpm database

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37

rpm-libs CVE-2021-3521 中危 4.11.3-40.el7 rpm: RPM does not require subkeys to have a valid binding signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41

rpm-libs CVE-2021-35937 中危 4.11.3-40.el7 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36

rpm-libs CVE-2021-35938 中危 4.11.3-40.el7 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06

rpm-libs CVE-2021-35939 中危 4.11.3-40.el7 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16

rpm-python CVE-2017-7500 中危 4.11.3-40.el7 rpm: Following symlinks to directories when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7500

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-13 17:29 修改: 2019-10-09 23:29

rpm-python CVE-2017-7501 中危 4.11.3-40.el7 rpm: Following symlinks to files when installing packages allows privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7501

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:50

rpm-python CVE-2021-20271 中危 4.11.3-40.el7 4.11.3-48.el7_9 rpm: Signature checks bypass via corrupted rpm package

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20271

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-26 17:15 修改: 2023-02-12 22:15

rpm-python CVE-2021-3421 中危 4.11.3-40.el7 rpm: unsigned signature header leads to string injection into an rpm database

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3421

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:37

rpm-python CVE-2021-3521 中危 4.11.3-40.el7 rpm: RPM does not require subkeys to have a valid binding signature

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3521

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-22 15:15 修改: 2023-02-12 23:41

rpm-python CVE-2021-35937 中危 4.11.3-40.el7 rpm: TOCTOU race in checks for unsafe symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36

rpm-python CVE-2021-35938 中危 4.11.3-40.el7 rpm: races with chown/chmod/capabilities calls during installation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06

rpm-python CVE-2021-35939 中危 4.11.3-40.el7 rpm: checks for unsafe symlinks are not performed for intermediary directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16

shared-mime-info CVE-2019-3820 中危 1.8-4.el7 1.8-5.el7 gnome-shell: partial lock screen bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3820

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-02-06 20:29 修改: 2021-09-29 14:24

sqlite CVE-2015-7036 中危 3.7.17-8.el7_7.1 sqlite: arbitrary code execution on databases with malformed schema

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-7036

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-22 03:59 修改: 2017-07-01 01:29

sqlite CVE-2017-7000 中危 3.7.17-8.el7_7.1 chromium-browser: pointer disclosure in sqlite

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7000

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-04-03 06:29 修改: 2018-04-27 18:00

sqlite CVE-2019-13751 中危 3.7.17-8.el7_7.1 sqlite: fts3: improve detection of corrupted records

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13751

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-10 22:15 修改: 2023-11-07 03:04

sqlite CVE-2019-13752 中危 3.7.17-8.el7_7.1 sqlite: fts3: improve shadow table corruption detection

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13752

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-10 22:15 修改: 2023-11-07 03:04

sqlite CVE-2019-13753 中危 3.7.17-8.el7_7.1 sqlite: fts3: incorrectly removed corruption check

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13753

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-10 22:15 修改: 2023-11-07 03:04

sqlite CVE-2019-19603 中危 3.7.17-8.el7_7.1 sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19603

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-09 19:15 修改: 2023-11-07 03:07

sqlite CVE-2019-19645 中危 3.7.17-8.el7_7.1 sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14

sqlite CVE-2019-19880 中危 3.7.17-8.el7_7.1 sqlite: invalid pointer dereference in exprListAppendList in window.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19880

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-18 06:15 修改: 2022-04-15 16:16

sqlite CVE-2019-19924 中危 3.7.17-8.el7_7.1 sqlite: incorrect sqlite3WindowRewrite() error handling leads to mishandling certain parser-tree rewriting

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19924

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07

sqlite CVE-2019-20218 中危 3.7.17-8.el7_7.1 sqlite: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20218

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-02 14:16 修改: 2022-10-07 17:56

sqlite CVE-2019-5827 中危 3.7.17-8.el7_7.1 sqlite: out-of-bounds access due to the use of 32-bit memory allocator interfaces

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5827

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-06-27 17:15 修改: 2023-11-07 03:12

sqlite CVE-2019-8457 中危 3.7.17-8.el7_7.1 sqlite: heap out-of-bound read in function rtreenode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13

sqlite CVE-2020-13435 中危 3.7.17-8.el7_7.1 sqlite: NULL pointer dereference in sqlite3ExprCodeTarget()

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13435

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-05-24 22:15 修改: 2023-11-07 03:16

sqlite CVE-2020-13631 中危 3.7.17-8.el7_7.1 sqlite: Virtual table can be renamed into the name of one of its shadow tables

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16

sqlite CVE-2020-24736 中危 3.7.17-8.el7_7.1 sqlite: Crash due to misuse of window functions.

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24736

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-11 18:15 修改: 2023-05-26 20:15

sqlite CVE-2020-35527 中危 3.7.17-8.el7_7.1 sqlite: Out of bounds access during table rename

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35527

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-01 18:15 修改: 2022-12-08 22:29

sqlite CVE-2022-35737 中危 3.7.17-8.el7_7.1 sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05

curl CVE-2023-28321 中危 7.29.0-54.el7_7.2 curl: IDN wildcard match may lead to Improper Cerificate Validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10

systemd CVE-2013-4392 中危 219-67.el7_7.3 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49

systemd CVE-2017-18078 中危 219-67.el7_7.3 systemd: Unsafe handling of hard links allowing privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18078

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-01-29 05:29 修改: 2023-11-07 02:41

systemd CVE-2018-6954 中危 219-67.el7_7.3 systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00

systemd CVE-2019-3842 中危 219-67.el7_7.3 systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any"

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3842

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-04-09 21:29 修改: 2023-11-07 03:10

systemd CVE-2020-13529 中危 219-67.el7_7.3 systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16

systemd CVE-2020-13776 中危 219-67.el7_7.3 systemd: Mishandles numerical usernames beginning with decimal digits or 0x followed by hexadecimal digits

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13776

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-06-03 03:15 修改: 2023-11-07 03:16

systemd CVE-2021-3997 中危 219-67.el7_7.3 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15

systemd CVE-2022-3821 中危 219-67.el7_7.3 systemd: buffer overrun in format_timespan() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51

systemd CVE-2022-4415 中危 219-67.el7_7.3 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19

systemd CVE-2022-45873 中危 219-67.el7_7.3 systemd: deadlock in systemd-coredump via a crash with a long backtrace

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45873

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-11-23 23:15 修改: 2023-11-07 03:54

systemd CVE-2023-26604 中危 219-67.el7_7.3 219-78.el7_9.11 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09

curl CVE-2024-2398 中危 7.29.0-54.el7_7.2 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15

systemd-libs CVE-2013-4392 中危 219-67.el7_7.3 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49

systemd-libs CVE-2017-18078 中危 219-67.el7_7.3 systemd: Unsafe handling of hard links allowing privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18078

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-01-29 05:29 修改: 2023-11-07 02:41

systemd-libs CVE-2018-6954 中危 219-67.el7_7.3 systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00

systemd-libs CVE-2019-3842 中危 219-67.el7_7.3 systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any"

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3842

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-04-09 21:29 修改: 2023-11-07 03:10

systemd-libs CVE-2020-13529 中危 219-67.el7_7.3 systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16

systemd-libs CVE-2020-13776 中危 219-67.el7_7.3 systemd: Mishandles numerical usernames beginning with decimal digits or 0x followed by hexadecimal digits

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13776

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-06-03 03:15 修改: 2023-11-07 03:16

systemd-libs CVE-2021-3997 中危 219-67.el7_7.3 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15

systemd-libs CVE-2022-3821 中危 219-67.el7_7.3 systemd: buffer overrun in format_timespan() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3821

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-11-08 22:15 修改: 2023-11-07 03:51

systemd-libs CVE-2022-4415 中危 219-67.el7_7.3 systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19

systemd-libs CVE-2022-45873 中危 219-67.el7_7.3 systemd: deadlock in systemd-coredump via a crash with a long backtrace

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45873

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-11-23 23:15 修改: 2023-11-07 03:54

systemd-libs CVE-2023-26604 中危 219-67.el7_7.3 219-78.el7_9.11 systemd: privilege escalation via the less pager

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09

tar CVE-2005-2541 中危 2:1.26-35.el7 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57

tar CVE-2016-6321 中危 2:1.26-35.el7 tar: Bypassing the extract path name

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6321

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-12-09 22:59 修改: 2023-02-13 04:50

tar CVE-2022-48303 中危 2:1.26-35.el7 tar: heap buffer overflow at from_header() in list.c via specially crafted checksum

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16

util-linux CVE-2014-9114 中危 2.23.2-61.el7_7.1 util-linux: command injection flaw in blkid

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9114

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-31 16:59 修改: 2023-11-07 02:22

util-linux CVE-2016-2779 中危 2.23.2-61.el7_7.1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14

util-linux CVE-2020-21583 中危 2.23.2-61.el7_7.1 util-linux: arbitrary commands execution via the path parameter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21583

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2024-10-07 19:36

util-linux CVE-2022-0563 中危 2.23.2-61.el7_7.1 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15

vim-minimal CVE-2019-20807 中危 2:7.4.629-6.el7 vim: users can execute arbitrary OS commands via scripting interfaces in the rvim restricted mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20807

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-05-28 14:15 修改: 2022-09-01 15:14

vim-minimal CVE-2021-3778 中危 2:7.4.629-6.el7 vim: heap-based buffer overflow in utf_ptr2char() in mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3778

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-15 08:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-3796 中危 2:7.4.629-6.el7 vim: use-after-free in nv_replace() in normal.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3796

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-15 13:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-3872 中危 2:7.4.629-6.el7 vim: heap-based buffer overflow in win_redr_status() in drawscreen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3872

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-10-19 13:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-3984 中危 2:7.4.629-6.el7 vim: illegal memory access in find_start_brace() in cindent.c when C-indenting

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3984

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-01 11:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-4019 中危 2:7.4.629-6.el7 vim: heap-based buffer overflow in find_help_tags() in help.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4019

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-01 10:15 修改: 2023-11-07 03:40

vim-minimal CVE-2021-4192 中危 2:7.4.629-6.el7 vim: use-after-free in win_linetabsize()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4192

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-31 15:15 修改: 2023-11-07 03:40

vim-minimal CVE-2021-4193 中危 2:7.4.629-6.el7 vim: out-of-bound read in getvcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4193

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-31 16:15 修改: 2023-11-07 03:40

vim-minimal CVE-2022-0359 中危 2:7.4.629-6.el7 vim: Heap-based buffer overflow in init_ccline() in ex_getln.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0359

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-26 12:15 修改: 2022-11-09 18:58

vim-minimal CVE-2022-1621 中危 2:7.4.629-6.el7 vim: heap buffer overflow in vim_strncpy

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1621

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-10 14:15 修改: 2023-11-07 03:42

vim-minimal CVE-2022-1629 中危 2:7.4.629-6.el7 vim: buffer over-read in function find_next_quote

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1629

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-10 14:15 修改: 2023-11-07 03:42

vim-minimal CVE-2024-43790 中危 2:7.4.629-6.el7 vim: Out of bounds read when performing a search command

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43790

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-22 22:15 修改: 2024-08-23 16:18

avahi-libs CVE-2023-1981 中危 0.6.31-19.el7 avahi: avahi-daemon can be crashed via DBus

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1981

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-26 18:15 修改: 2023-06-02 19:06

cyrus-sasl-lib CVE-2019-19906 中危 2.1.26-23.el7 cyrus-sasl: denial of service in _sasl_add_string function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19906

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-12-19 18:15 修改: 2023-11-07 03:07

avahi-libs CVE-2023-38469 中危 0.6.31-19.el7 avahi: Reachable assertion in avahi_dns_packet_append_record

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38469

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-11-02 15:15 修改: 2023-11-09 19:58

zlib CVE-2022-37434 中危 1.2.7-18.el7 1.2.7-21.el7_9 zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56

zlib CVE-2023-45853 中危 1.2.7-18.el7 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-14 02:15 修改: 2024-08-01 13:44

binutils CVE-2017-15938 低危 2.27-41.base.el7_7.2 binutils: Invalid memory read in find_abstract_instance_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-27 21:29 修改: 2023-11-07 02:40

binutils CVE-2017-15939 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the concat_filename

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-27 21:29 修改: 2023-11-07 02:40

libssh2 CVE-2023-6918 低危 1.8.0-3.el7 libssh: Missing checks for return values for digests

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15

binutils CVE-2017-15996 低危 2.27-41.base.el7_7.2 binutils: Excessive memory allocation in elfcomm.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15996

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-29 17:29 修改: 2023-11-07 02:40

binutils CVE-2017-16826 低危 2.27-41.base.el7_7.2 binutils: Invalid memory access in the coff_slurp_line_table function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16826

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-16827 低危 2.27-41.base.el7_7.2 binutils: Invalid free in the aout_get_external_symbols function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16827

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-16828 低危 2.27-41.base.el7_7.2 binutils: Integer overflow in the display_debug_frames function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16828

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-16829 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in the _bfd_elf_parse_gnu_properties function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16829

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

java-11-openjdk CVE-2020-14577 低危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14779 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17

java-11-openjdk CVE-2020-14796 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk CVE-2020-2754 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2755 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

libstdc++ CVE-2015-5276 低危 4.8.5-39.el7 gcc: Predictable randomness from std::random_device

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5276

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-17 15:59 修改: 2019-02-12 19:05

libstdc++ CVE-2016-2226 低危 4.8.5-39.el7 gcc: Exploitable buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2226

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-08-12 01:29

libstdc++ CVE-2016-4487 低危 4.8.5-39.el7 gcc: Invalid write due to a use-after-free to array btypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4487

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4488 低危 4.8.5-39.el7 gcc: Invalid write due to a use-after-free to array ktypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4488

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4489 低危 4.8.5-39.el7 gcc: Invalid write due to integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4489

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4490 低危 4.8.5-39.el7 gcc: Write access violation

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4490

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4491 低危 4.8.5-39.el7 gcc: Stack overflow due to infinite recursion in d_print_comp

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4492 低危 4.8.5-39.el7 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4492

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2016-4493 低危 4.8.5-39.el7 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4493

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libstdc++ CVE-2018-20657 低危 4.8.5-39.el7 libiberty: Memory leak in demangle_template function resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15

libstdc++ CVE-2019-14250 低危 4.8.5-39.el7 binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01

libstdc++ CVE-2021-3826 低危 4.8.5-39.el7 libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3826

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-01 21:15 修改: 2024-01-22 15:01

libstdc++ CVE-2021-46195 低危 4.8.5-39.el7 gcc: uncontrolled recursion in libiberty/rust-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46195

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 20:15 修改: 2022-01-22 01:38

libstdc++ CVE-2022-27943 低危 4.8.5-39.el7 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45

java-11-openjdk CVE-2020-2756 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2020-2757 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk CVE-2021-35603 低危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15

libtasn1 CVE-2017-10790 低危 4.10-1.el7 libtasn1: NULL pointer dereference in the _asn1_check_identifier function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10790

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-02 03:29 修改: 2023-11-07 02:38

libtasn1 CVE-2017-6891 低危 4.10-1.el7 libtasn1: Stack-based buffer overflow in asn1_find_node()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6891

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-22 19:29 修改: 2023-11-07 02:49

libtasn1 CVE-2018-1000654 低危 4.10-1.el7 libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51

java-11-openjdk CVE-2022-21619 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-21624 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2022-39399 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: missing SNI caching in HTTP/2 (Networking, 8289366)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39399

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk CVE-2023-21843 低危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

libuuid CVE-2015-5218 低危 2.23.2-61.el7_7.1 colcrt: global-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5218

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-09 16:59 修改: 2018-10-30 16:27

libuuid CVE-2021-37600 低危 2.23.2-61.el7_7.1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15

java-11-openjdk CVE-2023-21937 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-21938 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-21968 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk CVE-2023-22006 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: HTTP client insufficient file name validation (8302475)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk CVE-2023-22045 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04

java-11-openjdk CVE-2024-21012 低危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21012

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-13 18:35

dbus CVE-2014-3636 低危 1:1.10.24-13.el7_6 dbus: denial of service by queuing or splitting file descriptors

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3636

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-25 20:55 修改: 2023-12-27 16:36

dbus CVE-2014-3637 低危 1:1.10.24-13.el7_6 dbus: denial of service by creating unkillable D-Bus connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3637

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus CVE-2014-3638 低危 1:1.10.24-13.el7_6 dbus: denial of service in method call handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3638

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus CVE-2014-3639 低危 1:1.10.24-13.el7_6 dbus: denial of service flaw in incomplete connection handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3639

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus CVE-2015-0245 低危 1:1.10.24-13.el7_6 dbus: denial of service in dbus systemd activation

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-0245

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-02-13 15:59 修改: 2023-12-27 16:36

dbus CVE-2020-35512 低危 1:1.10.24-13.el7_6 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36

binutils CVE-2017-16830 低危 2.27-41.base.el7_7.2 binutils: Segmentation fault in the print_gnu_property_note function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16830

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-16831 低危 2.27-41.base.el7_7.2 binutils: Integer overflow in coffgen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16831

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-16832 低危 2.27-41.base.el7_7.2 binutils: Segmentation fault in the pe_bfd_read_buildid function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16832

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-15 08:29 修改: 2023-11-07 02:40

binutils CVE-2017-17080 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in bfd_getl32

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17080

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-11-30 21:29 修改: 2019-10-03 00:03

binutils CVE-2017-17121 低危 2.27-41.base.el7_7.2 binutils: Memory access violation via a crafted COFF binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17121

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

binutils CVE-2017-17122 低危 2.27-41.base.el7_7.2 binutils: Excessive memory allocation in the dump_relocs_in_section function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17122

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

binutils CVE-2017-17123 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the coff_slurp_reloc_table function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17123

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

binutils CVE-2017-17124 低危 2.27-41.base.el7_7.2 binutils: Heap buffer overflow in the _bfd_coff_read_string_table function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17124

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

binutils CVE-2017-17125 低危 2.27-41.base.el7_7.2 binutils: Buffer over-read in the _bfd_elf_get_symbol_version_string function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17125

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

dbus-libs CVE-2014-3636 低危 1:1.10.24-13.el7_6 dbus: denial of service by queuing or splitting file descriptors

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3636

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-25 20:55 修改: 2023-12-27 16:36

dbus-libs CVE-2014-3637 低危 1:1.10.24-13.el7_6 dbus: denial of service by creating unkillable D-Bus connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3637

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus-libs CVE-2014-3638 低危 1:1.10.24-13.el7_6 dbus: denial of service in method call handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3638

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus-libs CVE-2014-3639 低危 1:1.10.24-13.el7_6 dbus: denial of service flaw in incomplete connection handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3639

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-09-22 15:55 修改: 2023-12-27 16:36

dbus-libs CVE-2015-0245 低危 1:1.10.24-13.el7_6 dbus: denial of service in dbus systemd activation

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-0245

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-02-13 15:59 修改: 2023-12-27 16:36

dbus-libs CVE-2020-35512 低危 1:1.10.24-13.el7_6 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36

device-mapper CVE-2020-8991 低危 7:1.02.158-2.el7_7.2 lvm2: memory leak in vg_lookup in daemons/lvmetad/lvmetad-core.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8991

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-02-14 05:15 修改: 2024-08-04 11:15

device-mapper-libs CVE-2020-8991 低危 7:1.02.158-2.el7_7.2 lvm2: memory leak in vg_lookup in daemons/lvmetad/lvmetad-core.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8991

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-02-14 05:15 修改: 2024-08-04 11:15

binutils CVE-2017-17126 低危 2.27-41.base.el7_7.2 binutils: Invalid memory access in the load_debug_section function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17126

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-12-04 08:29 修改: 2023-11-07 02:41

elfutils-default-yama-scope CVE-2016-10254 低危 0.176-2.el7 elfutils: Memory allocation failure in allocate_elf

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10254

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

elfutils-default-yama-scope CVE-2016-10255 低危 0.176-2.el7 elfutils: Memory allocation failure in __libelf_set_rawdata_wrlock (elf_getdata.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10255

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

libxml2 CVE-2017-18258 低危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Unrestricted memory usage in xz_head() function in xzlib.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18258

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-04-08 17:29 修改: 2020-09-10 01:15

libxml2 CVE-2017-5969 低危 2.9.1-6.el7_2.3 libxml2: Null pointer dereference in xmlSaveDoc implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5969

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-11 16:59 修改: 2024-08-05 16:15

libxml2 CVE-2017-8872 低危 2.9.1-6.el7_2.3 libxml2: Out-of-bounds read in htmlParseTryOrFinish

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8872

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-10 05:29 修改: 2020-09-10 01:15

libxml2 CVE-2017-9048 低危 2.9.1-6.el7_2.3 libxml2: Stack-based buffer overflow in function xmlSnprintfElementContent

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9048

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2 CVE-2018-14567 低危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Infinite loop caused by incorrect error detection during LZMA decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14567

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-16 20:29 修改: 2020-09-10 01:15

libxml2 CVE-2023-45322 低危 2.9.1-6.el7_2.3 libxml2: use-after-free in xmlUnlinkNode() in tree.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15

libxml2 CVE-2024-34459 低危 2.9.1-6.el7_2.3 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35

elfutils-default-yama-scope CVE-2017-7607 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the handle_gnu_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7607

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-default-yama-scope CVE-2017-7608 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the ebl_object_note_type_name function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7608

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-default-yama-scope CVE-2017-7609 低危 0.176-2.el7 elfutils: Memory allocation failure in elf_compress.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7609

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2018-06-07 01:29

elfutils-default-yama-scope CVE-2017-7610 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_group function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7610

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-default-yama-scope CVE-2017-7611 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_symtab_shndx function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7611

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-default-yama-scope CVE-2017-7612 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_sysv_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7612

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-default-yama-scope CVE-2017-7613 低危 0.176-2.el7 elfutils: elflint.c does not validate the number of sections and segments

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7613

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-06-20 03:15

elfutils-default-yama-scope CVE-2021-33294 低危 0.176-2.el7 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19

elfutils-default-yama-scope CVE-2024-25260 低危 0.176-2.el7 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47

elfutils-libelf CVE-2016-10254 低危 0.176-2.el7 elfutils: Memory allocation failure in allocate_elf

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10254

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

elfutils-libelf CVE-2016-10255 低危 0.176-2.el7 elfutils: Memory allocation failure in __libelf_set_rawdata_wrlock (elf_getdata.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10255

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

elfutils-libelf CVE-2017-7607 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the handle_gnu_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7607

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libelf CVE-2017-7608 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the ebl_object_note_type_name function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7608

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libelf CVE-2017-7609 低危 0.176-2.el7 elfutils: Memory allocation failure in elf_compress.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7609

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2018-06-07 01:29

elfutils-libelf CVE-2017-7610 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_group function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7610

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libelf CVE-2017-7611 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_symtab_shndx function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7611

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libelf CVE-2017-7612 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_sysv_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7612

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libelf CVE-2017-7613 低危 0.176-2.el7 elfutils: elflint.c does not validate the number of sections and segments

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7613

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-06-20 03:15

elfutils-libelf CVE-2021-33294 低危 0.176-2.el7 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19

elfutils-libelf CVE-2024-25260 低危 0.176-2.el7 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47

elfutils-libs CVE-2016-10254 低危 0.176-2.el7 elfutils: Memory allocation failure in allocate_elf

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10254

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

elfutils-libs CVE-2016-10255 低危 0.176-2.el7 elfutils: Memory allocation failure in __libelf_set_rawdata_wrlock (elf_getdata.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10255

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 16:59 修改: 2023-11-07 02:29

elfutils-libs CVE-2017-7607 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the handle_gnu_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7607

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libs CVE-2017-7608 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the ebl_object_note_type_name function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7608

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libs CVE-2017-7609 低危 0.176-2.el7 elfutils: Memory allocation failure in elf_compress.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7609

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2018-06-07 01:29

elfutils-libs CVE-2017-7610 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_group function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7610

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libs CVE-2017-7611 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_symtab_shndx function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7611

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libs CVE-2017-7612 低危 0.176-2.el7 elfutils: Heap-buffer overflow in the check_sysv_hash function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7612

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-10-03 00:03

elfutils-libs CVE-2017-7613 低危 0.176-2.el7 elfutils: elflint.c does not validate the number of sections and segments

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7613

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-09 14:59 修改: 2019-06-20 03:15

elfutils-libs CVE-2021-33294 低危 0.176-2.el7 elfutils: an infinite loop was found in the function handle_symtab in readelf.c which causes denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33294

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-07-18 14:15 修改: 2023-07-27 15:19

elfutils-libs CVE-2024-25260 低危 0.176-2.el7 elfutils: global-buffer-overflow exists in the function ebl_machine_flag_name in eblmachineflagname.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25260

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-20 18:15 修改: 2024-08-01 13:47

binutils CVE-2017-6969 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in readelf when processing corrupt RL78 binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6969

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-17 09:59 修改: 2019-10-03 00:03

libxml2-python CVE-2017-18258 低危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Unrestricted memory usage in xz_head() function in xzlib.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18258

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-04-08 17:29 修改: 2020-09-10 01:15

libxml2-python CVE-2017-5969 低危 2.9.1-6.el7_2.3 libxml2: Null pointer dereference in xmlSaveDoc implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5969

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-04-11 16:59 修改: 2024-08-05 16:15

libxml2-python CVE-2017-8872 低危 2.9.1-6.el7_2.3 libxml2: Out-of-bounds read in htmlParseTryOrFinish

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8872

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-10 05:29 修改: 2020-09-10 01:15

libxml2-python CVE-2017-9048 低危 2.9.1-6.el7_2.3 libxml2: Stack-based buffer overflow in function xmlSnprintfElementContent

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9048

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-05-18 06:29 修改: 2023-11-07 02:50

libxml2-python CVE-2018-14567 低危 2.9.1-6.el7_2.3 2.9.1-6.el7.4 libxml2: Infinite loop caused by incorrect error detection during LZMA decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14567

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-08-16 20:29 修改: 2020-09-10 01:15

libxml2-python CVE-2023-45322 低危 2.9.1-6.el7_2.3 libxml2: use-after-free in xmlUnlinkNode() in tree.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15

libxml2-python CVE-2024-34459 低危 2.9.1-6.el7_2.3 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35

binutils CVE-2017-7209 低危 2.27-41.base.el7_7.2 binutils: Null pointer dereference in dump_section_as_bytes function in readelf

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7209

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-21 06:59 修改: 2018-01-09 02:29

binutils CVE-2017-7210 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-reads in objdump

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7210

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-21 06:59 修改: 2018-01-09 02:29

binutils CVE-2017-7223 低危 2.27-41.base.el7_7.2 binutils: Global buffer overflow when attempting to unget EOF character

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7223

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-22 16:59 修改: 2018-01-09 02:29

binutils CVE-2017-7224 低危 2.27-41.base.el7_7.2 binutils: Invalid write in find_nearest_line function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7224

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-22 16:59 修改: 2018-01-09 02:29

binutils CVE-2017-7225 低危 2.27-41.base.el7_7.2 binutils: Null pointer dereference and invalid write in find_nearest_line function in addr2line

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7225

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-22 16:59 修改: 2018-01-09 02:29

binutils CVE-2017-7226 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in pe_ILF_object_p function in libbfd

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7226

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-22 16:59 修改: 2019-10-03 00:03

binutils CVE-2017-7227 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer overflow in ld due to missing null termination

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7227

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-22 16:59 修改: 2018-01-09 02:29

binutils CVE-2017-7299 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in bfd_elf_final_link function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7299

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 16:28

binutils CVE-2017-7300 低危 2.27-41.base.el7_7.2 binutils: Heap-buffer overflow in aout_link_add_symbols function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7300

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 17:00

binutils CVE-2017-7301 低危 2.27-41.base.el7_7.2 binutils: Off-by-one error in aout_link_add_symbols function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7301

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 17:02

binutils CVE-2017-7302 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in wap_std_reloc_out function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7302

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 16:28

libxslt CVE-2015-9019 低危 1.1.28-5.el7 libxslt: math.random() in xslt uses unseeded randomness

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-9019

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-05 21:59 修改: 2017-04-11 19:57

libxslt CVE-2019-13117 低危 1.1.28-5.el7 libxslt: an xsl number with certain format strings could lead to a uninitialized read in xsltNumberFormatInsertNumbers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13117

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-01 02:15 修改: 2023-11-07 03:03

libxslt CVE-2019-13118 低危 1.1.28-5.el7 libxslt: read of uninitialized stack data due to too narrow xsl:number instruction and an invalid character

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13118

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-01 02:15 修改: 2023-11-07 03:03

binutils CVE-2017-7303 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in find_link function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7303

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 17:00

binutils CVE-2017-7304 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in copy_special_section_fields function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7304

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 15:59 修改: 2017-03-31 17:06

binutils CVE-2017-7614 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in bfd_elf_final_link function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7614

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-09 14:59 修改: 2017-09-19 01:36

binutils CVE-2017-8392 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the _bfd_dwarf2_find_nearest_line function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8392

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

binutils CVE-2017-8393 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read due to wrong assumption for objcopy and strip

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8393

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2019-10-03 00:03

binutils CVE-2017-8394 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the _bfd_elf_large_com_section

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8394

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

binutils CVE-2017-8395 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds write in the _bfd_generic_get_section_contents function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8395

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

binutils CVE-2017-8396 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in the existing reloc offset range tests

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8396

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

binutils CVE-2017-8397 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read and write while processing binary containing reloc(s) with negative addresses

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8397

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

ncurses CVE-2017-11112 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in append_acs function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11112

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2018-10-21 10:29

ncurses CVE-2017-11113 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference vulnerability in _nc_parse_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11113

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2019-05-06 15:00

ncurses CVE-2017-13728 低危 5.9-14.20130511.el7_4 ncurses: Infinite loop in the next_char function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13728

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13729 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the _nc_save_str function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13729

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13730 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_read_entry_source()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13730

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13731 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function postprocess_termcap()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13731

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13732 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function dump_uses()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13732

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13733 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function fmt_entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13733

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses CVE-2017-13734 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_safe_strcat

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13734

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2018-10-21 10:29

ncurses CVE-2017-16879 低危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in the _nc_write_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16879

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:40

ncurses CVE-2018-10754 低危 5.9-14.20130511.el7_4 ncurses: NULL Pointer Dereference in _nc_parse_entry function in tinfo/parse_entry.c.

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10754

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-05-05 02:29 修改: 2023-11-07 02:51

ncurses CVE-2018-19211 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15

ncurses CVE-2018-19217 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_name_match

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15

ncurses CVE-2020-19185 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses CVE-2020-19186 低危 5.9-14.20130511.el7_4 ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses CVE-2020-19187 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses CVE-2020-19188 低危 5.9-14.20130511.el7_4 ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses CVE-2020-19189 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses CVE-2020-19190 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses CVE-2021-39537 低危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15

ncurses CVE-2023-45918 低危 5.9-14.20130511.el7_4 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15

ncurses CVE-2023-50495 低危 5.9-14.20130511.el7_4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15

binutils CVE-2017-8398 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read while dumping the debug information from a corrupt binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8398

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 18:59 修改: 2017-09-19 01:36

binutils CVE-2017-8421 低危 2.27-41.base.el7_7.2 binutils: Memory exhaustion in objdump via a crafted PE file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8421

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-02 17:59 修改: 2019-10-03 00:03

binutils CVE-2017-9038 低危 2.27-41.base.el7_7.2 binutils: Heap-buffer overflow in the byte_get_little_endian

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9038

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

binutils CVE-2017-9039 低危 2.27-41.base.el7_7.2 binutils: Memory consumption via many program headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9039

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

binutils CVE-2017-9040 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the process_mips_specific_function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9040

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

ncurses-base CVE-2017-11112 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in append_acs function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11112

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2018-10-21 10:29

ncurses-base CVE-2017-11113 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference vulnerability in _nc_parse_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11113

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2019-05-06 15:00

ncurses-base CVE-2017-13728 低危 5.9-14.20130511.el7_4 ncurses: Infinite loop in the next_char function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13728

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13729 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the _nc_save_str function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13729

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13730 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_read_entry_source()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13730

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13731 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function postprocess_termcap()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13731

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13732 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function dump_uses()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13732

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13733 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function fmt_entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13733

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-base CVE-2017-13734 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_safe_strcat

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13734

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2018-10-21 10:29

ncurses-base CVE-2017-16879 低危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in the _nc_write_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16879

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:40

ncurses-base CVE-2018-10754 低危 5.9-14.20130511.el7_4 ncurses: NULL Pointer Dereference in _nc_parse_entry function in tinfo/parse_entry.c.

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10754

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-05-05 02:29 修改: 2023-11-07 02:51

ncurses-base CVE-2018-19211 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15

ncurses-base CVE-2018-19217 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_name_match

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15

ncurses-base CVE-2020-19185 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-base CVE-2020-19186 低危 5.9-14.20130511.el7_4 ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-base CVE-2020-19187 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-base CVE-2020-19188 低危 5.9-14.20130511.el7_4 ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-base CVE-2020-19189 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-base CVE-2020-19190 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-base CVE-2021-39537 低危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15

ncurses-base CVE-2023-45918 低危 5.9-14.20130511.el7_4 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15

ncurses-base CVE-2023-50495 低危 5.9-14.20130511.el7_4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15

binutils CVE-2017-9041 低危 2.27-41.base.el7_7.2 binutils: Heap buffer overflow in the process_mips_specific function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9041

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

binutils CVE-2017-9042 低危 2.27-41.base.el7_7.2 binutils: Invalid variable type in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9042

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

binutils CVE-2017-9043 低危 2.27-41.base.el7_7.2 binutils: Shift exponent too large for type unsigned long in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9043

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2023-11-07 02:50

binutils CVE-2017-9044 低危 2.27-41.base.el7_7.2 binutils: Out-of-bounds read in the print_symbol_for_build_attribute function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9044

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-18 01:29 修改: 2017-05-25 01:29

expat CVE-2016-9063 低危 2.1.0-10.el7_3 firefox: Possible integer overflow to fix inside XML_Parse in Expat

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9063

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-06-11 21:29 修改: 2022-06-27 16:42

ncurses-libs CVE-2017-11112 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in append_acs function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11112

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2018-10-21 10:29

ncurses-libs CVE-2017-11113 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference vulnerability in _nc_parse_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11113

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2019-05-06 15:00

ncurses-libs CVE-2017-13728 低危 5.9-14.20130511.el7_4 ncurses: Infinite loop in the next_char function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13728

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13729 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the _nc_save_str function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13729

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13730 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_read_entry_source()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13730

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13731 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function postprocess_termcap()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13731

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13732 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function dump_uses()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13732

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13733 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function fmt_entry

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13733

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2023-11-07 02:38

ncurses-libs CVE-2017-13734 低危 5.9-14.20130511.el7_4 ncurses: Illegal address access in the function _nc_safe_strcat

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13734

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-29 06:29 修改: 2018-10-21 10:29

ncurses-libs CVE-2017-16879 低危 5.9-14.20130511.el7_4 ncurses: Stack-based buffer overflow in the _nc_write_entry function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16879

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-11-22 22:29 修改: 2023-11-07 02:40

ncurses-libs CVE-2018-10754 低危 5.9-14.20130511.el7_4 ncurses: NULL Pointer Dereference in _nc_parse_entry function in tinfo/parse_entry.c.

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10754

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-05-05 02:29 修改: 2023-11-07 02:51

ncurses-libs CVE-2018-19211 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15

ncurses-libs CVE-2018-19217 低危 5.9-14.20130511.el7_4 ncurses: Null pointer dereference at function _nc_name_match

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19217

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-11-12 19:29 修改: 2024-08-05 12:15

ncurses-libs CVE-2020-19185 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in one_one_mapping function in progs/dump_entry.c:1373

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19185

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-libs CVE-2020-19186 低危 5.9-14.20130511.el7_4 ncurses: Buffer overflow in _nc_find_entry function in tinfo/comp_hash.c:66

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19186

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-libs CVE-2020-19187 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in fmt_entry function in progs/dump_entry.c:1100

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19187

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:15 修改: 2023-12-13 01:15

ncurses-libs CVE-2020-19188 低危 5.9-14.20130511.el7_4 ncurses: Stack buffer overflow in fmt_entry function in progs/dump_entry.c:1116

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19188

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-libs CVE-2020-19189 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in postprocess_terminfo function in tinfo/parse_entry.c:997

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-libs CVE-2020-19190 低危 5.9-14.20130511.el7_4 ncurses: Heap buffer overflow in _nc_find_entry in tinfo/comp_hash.c:70

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19190

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2023-12-13 01:15

ncurses-libs CVE-2021-39537 低危 5.9-14.20130511.el7_4 ncurses: heap-based buffer overflow in _nc_captoinfo() in captoinfo.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-39537

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-09-20 16:15 修改: 2023-12-03 20:15

ncurses-libs CVE-2023-45918 低危 5.9-14.20130511.el7_4 ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-16 22:15 修改: 2024-11-21 21:15

ncurses-libs CVE-2023-50495 低危 5.9-14.20130511.el7_4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15

expat CVE-2019-15903 低危 2.1.0-10.el7_3 2.1.0-12.el7 expat: heap-based buffer over-read via crafted XML input

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15903

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-04 06:15 修改: 2023-11-07 03:05

file-libs CVE-2014-9620 低危 5.11-35.el7 file: limit the number of ELF notes processed

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9620

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-01-21 18:59 修改: 2018-06-16 01:29

java-11-openjdk-devel CVE-2020-14577 低危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14779 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17

java-11-openjdk-devel CVE-2020-14796 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-devel CVE-2020-2754 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2755 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2756 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-devel CVE-2020-2757 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

nspr CVE-2019-11727 低危 4.21.0-1.el7 4.25.0-2.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nspr CVE-2019-17023 低危 4.21.0-1.el7 4.25.0-2.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

java-11-openjdk-devel CVE-2021-35603 低危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2022-21619 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-21624 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2022-39399 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: missing SNI caching in HTTP/2 (Networking, 8289366)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39399

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2023-21843 低危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

java-11-openjdk-devel CVE-2023-21937 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-21938 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-21968 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-devel CVE-2023-22006 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: HTTP client insufficient file name validation (8302475)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-devel CVE-2023-22045 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04

java-11-openjdk-devel CVE-2024-21012 低危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21012

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-13 18:35

file-libs CVE-2015-8865 低危 5.11-35.el7 file: Buffer over-write in finfo_open with malformed magic file

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8865

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-05-20 10:59 修改: 2023-11-07 02:28

file-libs CVE-2018-10360 低危 5.11-35.el7 5.11-36.el7 file: out-of-bounds read via a crafted ELF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10360

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-06-11 10:29 修改: 2019-05-02 14:40

file-libs CVE-2022-48554 低危 5.11-35.el7 file: stack-based buffer over-read in file_copystr in funcs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48554

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-22 19:16 修改: 2024-03-13 22:15

binutils CVE-2017-9742 低危 2.27-41.base.el7_7.2 binutils: Global buffer over-read in print_insn_score16 function while disassembling corrupt score binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9742

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-09-19 01:36

binutils CVE-2017-9743 低危 2.27-41.base.el7_7.2 binutils: Global buffer over-read in print_insn_score32 function while disassembling corrupt score binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9743

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9744 低危 2.27-41.base.el7_7.2 binutils: Address violation in sh_elf_set_mach_from_flags function when disassembling a corrupt SH binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9744

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-06-26 16:10

binutils CVE-2017-9745 低危 2.27-41.base.el7_7.2 binutils: Heap buffer over-read in _bfd_vms_slurp_etir function when handling VMS alpha binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9745

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-06-26 16:13

binutils CVE-2017-9746 低危 2.27-41.base.el7_7.2 binutils: Heap buffer over-read in disassemble_bytes function when disassembling a corrupt binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9746

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9747 低危 2.27-41.base.el7_7.2 binutils: Stack-based buffer over-read in ieee_archive_p function while disassembling corrupt IEEE binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9747

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-08-13 01:29

nss CVE-2019-11727 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss CVE-2019-17023 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

nss CVE-2020-12413 低危 3.44.0-7.el7_7 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49

nss CVE-2024-7531 低危 3.44.0-7.el7_7 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35

binutils CVE-2017-9748 低危 2.27-41.base.el7_7.2 binutils: Stack-based buffer over-read in ieee_object_p function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9748

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-08-12 01:29

freetype CVE-2014-9745 低危 2.8-14.el7 freetype: Infinite loop in parse_encoding in t1load.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9745

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-09-14 20:59 修改: 2018-10-30 16:27

freetype CVE-2014-9746 低危 2.8-14.el7 freetype: Use of uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9746

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-06-07 14:06 修改: 2018-07-19 01:29

freetype CVE-2014-9747 低危 2.8-14.el7 freetype: Use of uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9747

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-06-07 14:06 修改: 2016-06-08 15:03

freetype CVE-2018-6942 低危 2.8-14.el7 freetype: NULL pointer dereference in the Ins_GETVARIATION() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6942

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-13 05:29 修改: 2021-01-26 12:33

gawk CVE-2023-4156 低危 4.0.2-4.el7_3.1 gawk: heap out of bound read in builtin.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4156

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-25 18:15 修改: 2023-11-07 04:22

binutils CVE-2017-9749 低危 2.27-41.base.el7_7.2 binutils: Global buffer over-read in *regs* macros when disassembling corrupt bfin binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9749

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9750 低危 2.27-41.base.el7_7.2 binutils: Global buffer over-read in opcodes/rx-decode.opc when disassembling a corrupt RX binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9750

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9751 低危 2.27-41.base.el7_7.2 binutils: Stack-based buffer over-read in opcodes/rl78-decode.opc when disassembling a corrupt RL78 binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9751

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

giflib CVE-2016-3977 低危 4.1.6-9.el7 giflib: heap buffer overflow in gif2rgb

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3977

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-04-21 14:59 修改: 2018-10-30 16:27

nss-softokn CVE-2016-1938 低危 3.44.0-8.el7_7 NSS: Errors in mp_div and mp_exptmod cryptographic functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-01-31 18:59 修改: 2018-10-30 16:27

nss-softokn CVE-2019-11727 低危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss-softokn CVE-2019-17023 低危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

giflib CVE-2020-23922 低危 4.1.6-9.el7 giflib: out-of-bounds read in DumpScreen2RGB() in gif2rgb.c in gif2rgb tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-23922

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-04-21 18:15 修改: 2023-11-07 03:19

giflib CVE-2023-39742 低危 4.1.6-9.el7 giflib: segfault via getarg.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39742

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-25 14:15 修改: 2023-11-07 04:17

binutils CVE-2017-9752 低危 2.27-41.base.el7_7.2 binutils: Heap buffer over-read in f_bfd_vms_get_value function when processing a corrupt Alpha VMA binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9752

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-06-26 16:20

binutils CVE-2017-9753 低危 2.27-41.base.el7_7.2 binutils: Address violation in versados_mkobject function when disassembling a corrupt versados binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9753

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-06-26 16:20

binutils CVE-2017-9754 低危 2.27-41.base.el7_7.2 binutils: Stack-based buffer over-read in process_otr function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9754

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2017-06-26 16:21

binutils CVE-2017-9755 低危 2.27-41.base.el7_7.2 binutils: Global buffer over-read in opcodes/i386-dis.c while checking invalid registers

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9756 低危 2.27-41.base.el7_7.2 binutils: Address violation in aarch64_ext_ldst_reglist function when disassembling corrupt aarch64 binary

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-19 04:29 修改: 2018-01-09 02:29

binutils CVE-2017-9954 低危 2.27-41.base.el7_7.2 binutils: stack-based buffer over-read in getvalue function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9954

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-26 23:29 修改: 2019-10-03 00:03

binutils CVE-2017-9955 低危 2.27-41.base.el7_7.2 binutils: heap buffer over-read in get_build_id function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9955

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-26 23:29 修改: 2019-10-03 00:03

binutils CVE-2018-12698 低危 2.27-41.base.el7_7.2 binutils: excessive memory consumption in demangle_template in cplus-dem.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12698

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-23 23:29 修改: 2019-10-03 00:03

nss-softokn-freebl CVE-2016-1938 低危 3.44.0-8.el7_7 NSS: Errors in mp_div and mp_exptmod cryptographic functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-01-31 18:59 修改: 2018-10-30 16:27

nss-softokn-freebl CVE-2019-11727 低危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss-softokn-freebl CVE-2019-17023 低危 3.44.0-8.el7_7 3.53.1-6.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

binutils CVE-2018-12699 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in finish_stab in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12699

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-23 23:29 修改: 2019-08-03 13:15

binutils CVE-2018-12700 低危 2.27-41.base.el7_7.2 binutils: Stack Exhaustion in debug_write_type in debug.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12700

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-23 23:29 修改: 2023-11-07 02:52

binutils CVE-2018-12934 低危 2.27-41.base.el7_7.2 binutils: Uncontrolled Resource Consumption in remember_Ktype in cplus-dem.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12934

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-28 14:29 修改: 2020-04-21 22:15

binutils CVE-2018-17360 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer over-read in bfd_getl32 in libbfd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17360

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-09-23 18:29 修改: 2019-10-31 01:15

binutils CVE-2018-17794 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in libiberty/cplus-dem.c:work_stuff_copy_to_from() via crafted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17794

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-09-30 20:29 修改: 2020-04-21 22:15

glib2 CVE-2015-8386 低危 2.56.1-5.el7 pcre: Buffer overflow caused by lookbehind assertion (8.38/6)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8386

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2023-02-16 14:15

glib2 CVE-2017-11164 低危 2.56.1-5.el7 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38

glib2 CVE-2017-7244 低危 2.56.1-5.el7 pcre: invalid memory read in _pcre32_xclass (pcre_xclass.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7244

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

glib2 CVE-2017-7245 低危 2.56.1-5.el7 pcre: stack-based buffer overflow write in pcre32_copy_substring

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7245

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

glib2 CVE-2017-7246 低危 2.56.1-5.el7 pcre: stack-based buffer overflow write in pcre32_copy_substring

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7246

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

glib2 CVE-2018-16429 低危 2.56.1-5.el7 glib2: Out-of-bounds read in g_markup_parse_context_parse() in gmarkup.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16429

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-09-04 00:29 修改: 2023-11-07 02:53

glib2 CVE-2019-13012 低危 2.56.1-5.el7 glib2: insecure permissions for files and directories

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13012

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-28 15:15 修改: 2023-11-07 03:03

glib2 CVE-2021-28153 低危 2.56.1-5.el7 glib: g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION creates empty target for dangling symlink

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28153

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-11 22:15 修改: 2023-11-07 03:32

glib2 CVE-2023-29499 低危 2.56.1-5.el7 glib: GVariant offset table entry size is not checked in is_normal()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29499

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15

glib2 CVE-2023-32611 低危 2.56.1-5.el7 glib: g_variant_byteswap() can take a long time with some non-normal inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32611

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-14 20:15 修改: 2023-11-27 14:15

glib2 CVE-2023-32636 低危 2.56.1-5.el7 glib: Timeout in fuzz_variant_text

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32636

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-14 20:15 修改: 2024-01-12 22:09

glib2 CVE-2023-32665 低危 2.56.1-5.el7 glib: GVariant deserialisation does not match spec for non-normal data

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-32665

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-09-14 20:15 修改: 2024-04-26 09:15

binutils CVE-2018-17985 低危 2.27-41.base.el7_7.2 binutils: Stack consumption problem caused by the cplus_demangle_type

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17985

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-04 23:29 修改: 2019-10-31 01:15

binutils CVE-2018-18483 低危 2.27-41.base.el7_7.2 binutils: Integer overflow in cplus-dem.c:get_count() allows for denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18483

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-18 21:29 修改: 2019-10-31 01:15

binutils CVE-2018-18484 低危 2.27-41.base.el7_7.2 binutils: Stack exhaustion in cp-demangle.c allows for denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18484

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-18 21:29 修改: 2020-08-24 17:37

nss-sysinit CVE-2019-11727 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss-sysinit CVE-2019-17023 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

nss-sysinit CVE-2020-12413 低危 3.44.0-7.el7_7 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49

nss-sysinit CVE-2024-7531 低危 3.44.0-7.el7_7 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35

binutils CVE-2018-18605 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer over-read in sec_merge_hash_lookup in merge.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18605

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-23 17:29 修改: 2023-11-07 02:55

binutils CVE-2018-18606 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in _bfd_add_merge_section in merge_strings function in merge.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18606

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-23 17:29 修改: 2023-11-07 02:55

binutils CVE-2018-18607 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in elf_link_input_bfd in elflink.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18607

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-23 17:29 修改: 2023-11-07 02:55

binutils CVE-2018-18700 低危 2.27-41.base.el7_7.2 binutils: Recursive Stack Overflow within function d_name, d_encoding, and d_local_name in cp-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18700

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-29 12:29 修改: 2020-04-21 22:15

binutils CVE-2018-18701 低危 2.27-41.base.el7_7.2 binutils: infinite recursion in next_is_type_qual and cplus_demangle_type functions in cp-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18701

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-10-29 12:29 修改: 2020-04-21 22:15

binutils CVE-2018-19932 低危 2.27-41.base.el7_7.2 binutils: Integer overflow due to the IS_CONTAINED_BY_LMA macro resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19932

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-12-07 07:29 修改: 2023-11-07 02:55

binutils CVE-2018-20002 低危 2.27-41.base.el7_7.2 binutils: memory leak in _bfd_generic_read_minisymbols function in syms.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20002

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-12-10 02:29 修改: 2023-11-07 02:56

binutils CVE-2018-20657 低危 2.27-41.base.el7_7.2 libiberty: Memory leak in demangle_template function resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15

binutils CVE-2018-6323 低危 2.27-41.base.el7_7.2 binutils: Integer overflow in elf_object_p function in elfcode.h

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6323

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-01-26 08:29 修改: 2019-10-31 01:15

binutils CVE-2018-6759 低危 2.27-41.base.el7_7.2 binutils: Unchecked strnlen in opncls.c:bfd_get_debug_link_info_1() can allow lead to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6759

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-06 21:29 修改: 2019-10-31 01:15

binutils CVE-2018-6872 低危 2.27-41.base.el7_7.2 binutils: out of bounds read in elf_parse_notes function in elf.c file in libbfd library

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6872

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-02-09 06:29 修改: 2023-11-07 03:00

binutils CVE-2019-1010204 低危 2.27-41.base.el7_7.2 binutils: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read in gold/fileread.cc and elfcpp/elfcpp_file.h leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010204

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2023-11-07 03:02

binutils CVE-2019-12972 低危 2.27-41.base.el7_7.2 binutils: out-of-bounds read in setup_group in bfd/elf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12972

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-06-26 14:15 修改: 2023-11-07 03:03

binutils CVE-2019-14250 低危 2.27-41.base.el7_7.2 binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01

binutils CVE-2019-17450 低危 2.27-41.base.el7_7.2 binutils: denial of service via crafted ELF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17450

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-10-10 17:15 修改: 2023-02-27 15:32

binutils CVE-2019-17451 低危 2.27-41.base.el7_7.2 binutils: integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17451

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-10-10 17:15 修改: 2023-11-07 03:06

binutils CVE-2020-16591 低危 2.27-41.base.el7_7.2 binutils: invalid read in process_symbol_table could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16591

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

glibc CVE-2014-4043 低危 2.17-292.el7 glibc: posix_spawn_file_actions_addopen fails to copy the path argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-4043

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-06 23:55 修改: 2023-11-07 02:20

glibc CVE-2015-8982 低危 2.17-292.el7 glibc: multiple overflows in strxfrm()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8982

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-15 19:59 修改: 2023-11-07 02:28

glibc CVE-2015-8984 低危 2.17-292.el7 glibc: potential denial of service in internal_fnmatch()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8984

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2023-11-07 02:28

nss-tools CVE-2019-11727 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss-tools CVE-2019-17023 低危 3.44.0-7.el7_7 3.53.1-3.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

nss-tools CVE-2020-12413 低危 3.44.0-7.el7_7 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49

nss-tools CVE-2024-7531 低危 3.44.0-7.el7_7 mozilla: nss: PK11_Encrypt using CKM_CHACHA20 can reveal plaintext on Intel Sandy Bridge machines

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7531

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-08-06 13:15 修改: 2024-10-30 21:35

glibc CVE-2015-8985 低危 2.17-292.el7 glibc: potential denial of service in pop_fail_stack()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8985

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2020-03-31 14:47

glibc CVE-2016-10228 低危 2.17-292.el7 glibc: iconv program can hang when invoked with the -c option

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29

glibc CVE-2017-15671 低危 2.17-292.el7 glibc: Memory leak in glob with GLOB_TILDE

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15671

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-10-20 17:29 修改: 2019-10-03 00:03

glibc CVE-2019-19126 低危 2.17-292.el7 2.17-317.el7 glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07

glibc CVE-2020-27618 低危 2.17-292.el7 glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06

glibc CVE-2021-33574 低危 2.17-292.el7 glibc: mq_notify does not handle separately allocated thread attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35

glibc CVE-2024-33601 低危 2.17-292.el7 2.17-326.el7_9.3 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

glibc CVE-2024-33602 低危 2.17-292.el7 2.17-326.el7_9.3 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

nss-util CVE-2019-11727 低危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15

nss-util CVE-2019-17023 低危 3.44.0-4.el7_7 3.53.1-1.el7_9 nss: TLS 1.3 HelloRetryRequest downgrade request sets client into invalid state

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-08 22:15 修改: 2023-01-27 18:24

binutils CVE-2020-16593 低危 2.27-41.base.el7_7.2 binutils: Null Pointer Dereference in scan_unit_for_symbols could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16593

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

binutils CVE-2020-16598 低危 2.27-41.base.el7_7.2 binutils: Null Pointer Dereference in debug_get_real_type could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16598

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

binutils CVE-2020-16599 低危 2.27-41.base.el7_7.2 binutils: Null Pointer Dereference in _bfd_elf_get_symbol_version_string could result in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16599

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-09 21:15 修改: 2023-11-07 03:18

binutils CVE-2020-35448 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer overflow in bfd_getl_signed_32() in libbfd.c because sh_entsize is not validated in _bfd_elf_slurp_secondary_reloc_section() in elf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35448

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-27 04:15 修改: 2023-11-07 03:21

binutils CVE-2020-35493 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in bfd_pef_parse_function_stubs function in bfd/pef.c via crafted PEF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35493

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-01-04 15:15 修改: 2023-11-07 03:21

binutils CVE-2020-35494 低危 2.27-41.base.el7_7.2 binutils: usage of unitialized heap in tic4x_print_cond function in opcodes/tic4x-dis.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35494

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-01-04 15:15 修改: 2023-11-07 03:21

binutils CVE-2020-35495 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in bfd_pef_parse_symbols function in bfd/pef.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35495

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-01-04 15:15 修改: 2023-11-07 03:21

binutils CVE-2020-35496 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in bfd_pef_scan_start_address function in bfd/pef.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35496

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-01-04 15:15 修改: 2023-11-07 03:21

binutils CVE-2020-35507 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in bfd_pef_parse_function_stubs function in bfd/pef.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35507

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-01-04 15:15 修改: 2023-01-24 16:10

binutils CVE-2021-3826 低危 2.27-41.base.el7_7.2 libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3826

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-01 21:15 修改: 2024-01-22 15:01

binutils CVE-2022-38533 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in bfd_getl32() when called by strip_main() in objcopy.c via a crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38533

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-08-26 00:15 修改: 2023-11-07 03:50

binutils CVE-2022-44840 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer overflow in find_section_in_set() in readelf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-44840

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14

binutils CVE-2022-47007 低危 2.27-41.base.el7_7.2 binutils: memory leak in stab_demangle_v3_arg() in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47007

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14

java-11-openjdk-headless CVE-2020-14577 低危 1:11.0.6.10-1.el7_7 1:11.0.8.10-0.el7_8 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14779 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17

java-11-openjdk-headless CVE-2020-14796 低危 1:11.0.6.10-1.el7_7 1:11.0.9.11-0.el7_9 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57

java-11-openjdk-headless CVE-2020-2754 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2755 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

openldap CVE-2016-4984 低危 2.4.44-21.el7_6 openldap-servers: /usr/libexec/openldap/generate-server-cert.sh create world readable password file

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4984

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-17 13:18 修改: 2019-04-22 17:48

openldap CVE-2020-15719 低危 2.4.44-21.el7_6 openldap: Certificate validation incorrectly matches name against CN-ID

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01

openldap CVE-2023-2953 低危 2.4.44-21.el7_6 openldap: null pointer dereference in ber_memalloc_x function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46

java-11-openjdk-headless CVE-2020-2756 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2020-2757 低危 1:11.0.6.10-1.el7_7 1:11.0.7.10-4.el7_8 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21

java-11-openjdk-headless CVE-2021-35603 低危 1:11.0.6.10-1.el7_7 1:11.0.13.0.8-1.el7_9 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2022-21619 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: improper handling of long NTLM client hostnames (Security, 8286526)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21619

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-21624 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: insufficient randomization of JNDI DNS port numbers (JNDI, 8286910)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21624

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2022-39399 低危 1:11.0.6.10-1.el7_7 1:11.0.17.0.8-2.el7_9 OpenJDK: missing SNI caching in HTTP/2 (Networking, 8289366)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39399

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-18 21:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2023-21843 低危 1:11.0.6.10-1.el7_7 1:11.0.18.0.10-1.el7_9 OpenJDK: soundbank URL remote loading (Sound, 8293742)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21843

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-01-18 00:15 修改: 2024-01-17 15:15

java-11-openjdk-headless CVE-2023-21937 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing string checks for NULL characters (8296622)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21937

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-21938 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-21968 低危 1:11.0.6.10-1.el7_7 1:11.0.19.0.7-1.el7_9 OpenJDK: missing check for slash characters in URI-to-path conversion (8298667)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-21968

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-04-18 20:15 修改: 2024-06-21 19:15

java-11-openjdk-headless CVE-2023-22006 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: HTTP client insufficient file name validation (8302475)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22006

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:48

java-11-openjdk-headless CVE-2023-22045 低危 1:11.0.6.10-1.el7_7 1:11.0.20.0.8-1.el7_9 OpenJDK: array indexing integer overflow issue (8304468)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22045

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-18 21:15 修改: 2024-01-26 16:04

java-11-openjdk-headless CVE-2024-21012 低危 1:11.0.6.10-1.el7_7 1:11.0.23.0.9-2.el7_9 OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21012

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-04-16 22:15 修改: 2024-11-13 18:35

binutils CVE-2022-47008 低危 2.27-41.base.el7_7.2 binutils: memory leak in make_tempdir() and make_tempname() in bucomm.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47008

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14

openssl-libs CVE-2019-1551 低危 1:1.0.2k-19.el7 openssl: Integer overflow in RSAZ modular exponentiation on x86_64

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08

openssl-libs CVE-2019-1563 低危 1:1.0.2k-19.el7 openssl: information disclosure in PKCS7_dataDecode and CMS_decrypt_set1_pkey

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1563

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-09-10 17:15 修改: 2023-11-07 03:08

openssl-libs CVE-2020-1968 低危 1:1.0.2k-19.el7 openssl: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1968

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-09-09 14:15 修改: 2022-11-21 19:48

openssl-libs CVE-2021-3601 低危 1:1.0.2k-19.el7 openssl: Certificate with CA:FALSE is accepted as valid CA cert

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3601

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-29 10:15 修改: 2023-11-07 03:38

openssl-libs CVE-2022-3358 低危 1:1.0.2k-19.el7 openssl: Using a Custom Cipher with NID_undef may lead to NULL encryption

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3358

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-11 15:15 修改: 2024-02-04 09:15

openssl-libs CVE-2023-0464 低危 1:1.0.2k-19.el7 openssl: Denial of service by excessive resource usage in verifying X509 policy constraints

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15

openssl-libs CVE-2023-0465 低危 1:1.0.2k-19.el7 openssl: Invalid certificate policies in leaf certificates are silently ignored

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15

openssl-libs CVE-2023-0466 低危 1:1.0.2k-19.el7 openssl: Certificate policy check not enabled

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0466

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15

openssl-libs CVE-2023-3446 低危 1:1.0.2k-19.el7 openssl: Excessive time spent checking DH keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15

openssl-libs CVE-2023-3817 低危 1:1.0.2k-19.el7 OpenSSL: Excessive time spent checking DH q parameter value

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15

openssl-libs CVE-2023-5678 低危 1:1.0.2k-19.el7 openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15

openssl-libs CVE-2023-6129 低危 1:1.0.2k-19.el7 openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6129

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-01-09 17:15 修改: 2024-10-14 15:15

openssl-libs CVE-2024-0727 低危 1:1.0.2k-19.el7 openssl: denial of service via null dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15

openssl-libs CVE-2024-41996 低危 1:1.0.2k-19.el7 openssl: remote attackers (from the client side) to trigger unnecessarily expensive server-side DHE modular-exponentiation calculations

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41996

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-26 06:15 修改: 2024-08-26 16:35

openssl-libs CVE-2024-5535 低危 1:1.0.2k-19.el7 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15

binutils CVE-2022-47010 低危 2.27-41.base.el7_7.2 binutils: memory leak in pr_function_type() in prdbg.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47010

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14

binutils CVE-2022-47011 低危 2.27-41.base.el7_7.2 binutils: memory leak in parse_stab_struct_fields() in stabs.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-47011

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:14

binutils CVE-2023-1972 低危 2.27-41.base.el7_7.2 binutils: Illegal memory access when accessing a zer0-lengthverdef table

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1972

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-17 22:15 修改: 2023-09-30 10:15

binutils CVE-2023-25584 低危 2.27-41.base.el7_7.2 binutils: Out of bounds read in parse_module function in bfd/vms-alpha.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25584

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-09-14 21:15 修改: 2024-02-23 18:51

binutils CVE-2023-25585 低危 2.27-41.base.el7_7.2 binutils: Field `file_table` of `struct module *module` is uninitialized

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25585

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-09-14 21:15 修改: 2023-11-07 04:09

binutils CVE-2023-25588 低危 2.27-41.base.el7_7.2 binutils: Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab`

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25588

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-09-14 21:15 修改: 2023-11-07 04:09

glibc-common CVE-2014-4043 低危 2.17-292.el7 glibc: posix_spawn_file_actions_addopen fails to copy the path argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-4043

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-06 23:55 修改: 2023-11-07 02:20

glibc-common CVE-2015-8982 低危 2.17-292.el7 glibc: multiple overflows in strxfrm()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8982

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-15 19:59 修改: 2023-11-07 02:28

glibc-common CVE-2015-8984 低危 2.17-292.el7 glibc: potential denial of service in internal_fnmatch()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8984

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2023-11-07 02:28

pcre CVE-2015-8382 低危 8.32-17.el7 php: Regular Expression Uninitialized Pointer Information Disclosure Vulnerability (ZDI-CAN-2547)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8382

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-12-02 01:59 修改: 2023-11-07 02:28

pcre CVE-2017-11164 低危 8.32-17.el7 pcre: OP_KETRMAX feature in the match function in pcre_exec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38

pcre CVE-2017-7244 低危 8.32-17.el7 pcre: invalid memory read in _pcre32_xclass (pcre_xclass.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7244

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

pcre CVE-2017-7245 低危 8.32-17.el7 pcre: stack-based buffer overflow write in pcre32_copy_substring

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7245

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

pcre CVE-2017-7246 低危 8.32-17.el7 pcre: stack-based buffer overflow write in pcre32_copy_substring

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7246

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29

pcre CVE-2020-14155 低危 8.32-17.el7 pcre: Integer overflow when parsing callout numeric arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04

glibc-common CVE-2015-8985 低危 2.17-292.el7 glibc: potential denial of service in pop_fail_stack()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8985

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-20 16:59 修改: 2020-03-31 14:47

procps-ng CVE-2018-1121 低危 3.3.10-26.el7_7.1 procps: process hiding through race condition enumerating /proc

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1121

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-06-13 20:29 修改: 2020-06-30 16:15

procps-ng CVE-2018-1123 低危 3.3.10-26.el7_7.1 procps: denial of service in ps via mmap buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1123

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-05-23 14:29 修改: 2023-11-07 02:55

procps-ng CVE-2018-1125 低危 3.3.10-26.el7_7.1 procps: stack buffer overflow in pgrep

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1125

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-05-23 14:29 修改: 2020-09-09 14:59

procps-ng CVE-2023-4016 低危 3.3.10-26.el7_7.1 procps: ps buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19

glibc-common CVE-2016-10228 低危 2.17-292.el7 glibc: iconv program can hang when invoked with the -c option

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10228

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-03-02 01:59 修改: 2023-11-07 02:29

glibc-common CVE-2017-15671 低危 2.17-292.el7 glibc: Memory leak in glob with GLOB_TILDE

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15671

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-10-20 17:29 修改: 2019-10-03 00:03

glibc-common CVE-2019-19126 低危 2.17-292.el7 2.17-317.el7 glibc: LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19126

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-19 22:15 修改: 2023-11-07 03:07

glibc-common CVE-2020-27618 低危 2.17-292.el7 glibc: iconv when processing invalid multi-byte input sequences fails to advance the input state, which could result in an infinite loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27618

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-02-26 23:15 修改: 2022-10-28 20:06

krb5-libs CVE-2017-11462 低危 1.15.1-37.el7_7.2 krb5: Automatic sec context deletion could lead to double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38

krb5-libs CVE-2024-26458 低危 1.15.1-37.el7_7.2 krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09

krb5-libs CVE-2024-26461 低危 1.15.1-37.el7_7.2 krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35

glibc-common CVE-2021-33574 低危 2.17-292.el7 glibc: mq_notify does not handle separately allocated thread attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33574

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-05-25 22:15 修改: 2023-11-07 03:35

glibc-common CVE-2024-33601 低危 2.17-292.el7 2.17-326.el7_9.3 glibc: netgroup cache may terminate daemon on memory allocation failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

glibc-common CVE-2024-33602 低危 2.17-292.el7 2.17-326.el7_9.3 glibc: netgroup cache assumes NSS callback uses in-buffer strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15

bzip2-libs CVE-2016-3189 低危 1.0.6-13.el7 bzip2: heap use after free in bzip2recover

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3189

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-06-30 17:59 修改: 2023-11-07 02:32

bzip2-libs CVE-2019-12900 低危 1.0.6-13.el7 bzip2: out-of-bounds write in function BZ2_decompress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03

ca-certificates CVE-2023-37920 低危 2019.2.32-76.el7_7 python-certifi: Removal of e-Tugra root certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-37920

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-07-25 21:15 修改: 2023-08-12 06:16

bind-license CVE-2016-6170 低危 32:9.11.4-9.P2.el7 bind: Improper restriction of zone size limit

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6170

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-07-06 14:59 修改: 2020-08-25 20:19

gnupg2 CVE-2014-3591 低危 2.0.22-5.el7_5 libgcrypt: use ciphertext blinding for Elgamal decryption (new side-channel attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3591

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-29 22:15 修改: 2019-12-05 18:06

gnupg2 CVE-2015-0837 低危 2.0.22-5.el7_5 libgcrypt: last-level cache side-channel attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-0837

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-29 22:15 修改: 2019-12-14 13:59

libX11 CVE-2016-7942 低危 1.6.7-2.el7 libX11: Insufficient validation of server responses in XGetImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7942

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libX11 CVE-2022-3555 低危 1.6.7-2.el7 libX11: memory leak in _XFreeX11XCBStructure() of xcb_disp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3555

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51

gnupg2 CVE-2015-1606 低危 2.0.22-5.el7_5 gnupg2: invalid memory read using a garbled keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-1606

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-20 19:15 修改: 2023-11-07 02:24

gnupg2 CVE-2015-1607 低危 2.0.22-5.el7_5 gnupg2: memcpy with overlapping ranges (keybox_search.c)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-1607

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-20 19:15 修改: 2023-11-07 02:24

gnupg2 CVE-2018-9234 低危 2.0.22-5.el7_5 GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37

gnupg2 CVE-2022-3219 低危 2.0.22-5.el7_5 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31

gpgme CVE-2014-3564 低危 1.3.2-5.el7 gpgme: heap-based buffer overflow in gpgsm status handler

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3564

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2014-10-20 17:55 修改: 2023-02-13 00:40

bind-license CVE-2018-5745 低危 32:9.11.4-9.P2.el7 32:9.11.4-16.P2.el7 bind: An assertion failure if a trust anchor rolls over to an unsupported key algorithm when using managed-keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5745

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-09 16:15 修改: 2019-11-06 01:15

coreutils CVE-2014-9471 低危 8.22-24.el7 coreutils: memory corruption flaw in parse_datetime()

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9471

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-01-16 16:59 修改: 2020-12-08 15:18

coreutils CVE-2015-4041 低危 8.22-24.el7 coreutils: heap buffer overflow in sort(1) keycompare_mb()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-4041

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-24 17:15 修改: 2020-02-01 17:33

coreutils CVE-2015-4042 低危 8.22-24.el7 coreutils: possible buffer overflow in keycompare_mb()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-4042

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-01-24 17:15 修改: 2020-02-01 17:33

libX11-common CVE-2016-7942 低危 1.6.7-2.el7 libX11: Insufficient validation of server responses in XGetImage()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7942

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

libX11-common CVE-2022-3555 低危 1.6.7-2.el7 libX11: memory leak in _XFreeX11XCBStructure() of xcb_disp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3555

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-10-17 13:15 修改: 2023-11-07 03:51

bind-license CVE-2019-6465 低危 32:9.11.4-9.P2.el7 32:9.11.4-16.P2.el7 bind: Controls for zone transfers may not be properly applied to DLZs if the zones are writable

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6465

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-10-09 16:15 修改: 2019-12-16 16:57

libXi CVE-2016-7946 低危 1.7.9-1.el7 libXi: Insufficient validation of server responses result in various data mishandlings

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7946

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-12-13 20:59 修改: 2023-11-07 02:35

avahi-libs CVE-2017-6519 低危 0.6.31-19.el7 0.6.31-20.el7 avahi: Multicast DNS responds to unicast queries outside of local network

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6519

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-05-01 01:59 修改: 2023-11-07 02:49

bash CVE-2019-18276 低危 4.2.46-33.el7 bash: when effective UID is not equal to its real UID the saved UID is not dropped

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18276

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-28 01:15 修改: 2023-11-07 03:06

python CVE-2018-1000030 低危 2.7.5-86.el7 python: Heap-Buffer-Overflow and Heap-Use-After-Free in Objects/fileobject.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000030

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-02-08 17:29 修改: 2020-08-24 17:37

python CVE-2019-9674 低危 2.7.5-86.el7 python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40

python CVE-2021-3737 低危 2.7.5-86.el7 python: urllib: HTTP client possible infinite loop on a 100 Continue response

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38

python CVE-2024-0397 低危 2.7.5-86.el7 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44

python CVE-2024-4032 低危 2.7.5-86.el7 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35

python CVE-2024-5642 低危 2.7.5-86.el7 python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35

python CVE-2024-7592 低危 2.7.5-86.el7 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15

cpio CVE-2015-1197 低危 2.11-27.el7 cpio: directory traversal through symlinks

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-1197

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-02-19 15:59 修改: 2023-12-27 15:15

cpio CVE-2016-2037 低危 2.11-27.el7 cpio: out of bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2037

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-02-22 15:59 修改: 2016-12-06 03:07

cpio CVE-2023-7216 低危 2.11-27.el7 CPIO: extraction allows symlinks which enables Remote Command Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7216

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-05 15:15 修改: 2024-09-19 06:15

cracklib CVE-2016-6318 低危 2.9.0-11.el7 cracklib: Stack-based buffer overflow when parsing large GECOS field

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6318

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 19:28 修改: 2023-02-12 23:24

cracklib-dicts CVE-2016-6318 低危 2.9.0-11.el7 cracklib: Stack-based buffer overflow when parsing large GECOS field

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6318

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 19:28 修改: 2023-02-12 23:24

bind-license CVE-2013-5661 低危 32:9.11.4-9.P2.el7 DNS response rate limiting can simplify cache poisoning attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-5661

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-05 19:15 修改: 2019-11-08 19:04

libblkid CVE-2015-5218 低危 2.23.2-61.el7_7.1 colcrt: global-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5218

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-09 16:59 修改: 2018-10-30 16:27

libblkid CVE-2021-37600 低危 2.23.2-61.el7_7.1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15

binutils CVE-2014-9939 低危 2.27-41.base.el7_7.2 binutils: buffer overflow in ihex.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-21 06:59 修改: 2023-11-07 02:23

libcap CVE-2023-2602 低危 2.22-10.el7 libcap: Memory Leak on pthread_create() Error

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15

binutils CVE-2015-8538 低危 2.27-41.base.el7_7.2 libdwarf: Out-of-bounds read in dwarf_leb.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8538

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-06-07 20:29 修改: 2022-04-06 18:34

binutils CVE-2016-2226 低危 2.27-41.base.el7_7.2 gcc: Exploitable buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2226

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-08-12 01:29

binutils CVE-2016-4487 低危 2.27-41.base.el7_7.2 gcc: Invalid write due to a use-after-free to array btypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4487

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

binutils CVE-2016-4488 低危 2.27-41.base.el7_7.2 gcc: Invalid write due to a use-after-free to array ktypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4488

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libcom_err CVE-2015-1572 低危 1.42.9-16.el7 e2fsprogs: potential buffer overflow in closefs() (incomplete CVE-2015-0247 fix)

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-1572

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-02-24 15:59 修改: 2017-11-08 02:29

binutils CVE-2016-4489 低危 2.27-41.base.el7_7.2 gcc: Invalid write due to integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4489

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

binutils CVE-2016-4490 低危 2.27-41.base.el7_7.2 gcc: Write access violation

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4490

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

binutils CVE-2016-4491 低危 2.27-41.base.el7_7.2 gcc: Stack overflow due to infinite recursion in d_print_comp

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4491

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

binutils CVE-2016-4492 低危 2.27-41.base.el7_7.2 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4492

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

binutils CVE-2016-4493 低危 2.27-41.base.el7_7.2 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4493

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

cups-libs CVE-2017-18248 低危 1:1.6.3-40.el7 cups: Invalid usernames handled in scheduler/ipp.c:add_job() allow remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18248

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-03-26 17:29 修改: 2018-07-13 01:29

cups-libs CVE-2019-8675 低危 1:1.6.3-40.el7 1:1.6.3-51.el7 cups: stack-buffer-overflow in libcups's asn1_get_type function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8675

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-27 20:15 修改: 2020-10-29 16:02

cups-libs CVE-2019-8696 低危 1:1.6.3-40.el7 1:1.6.3-51.el7 cups: stack-buffer-overflow in libcups's asn1_get_packed function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8696

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-27 20:15 修改: 2020-10-30 02:22

cups-libs CVE-2020-3898 低危 1:1.6.3-40.el7 cups: heap based buffer overflow in libcups's ppdFindOption() in ppd-mark.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3898

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-10-22 18:15 修改: 2021-07-21 11:39

cups-libs CVE-2021-25317 低危 1:1.6.3-40.el7 cups: insecure permissions of /var/log/cups allows for symlink attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-25317

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-05-05 10:15 修改: 2023-11-07 03:31

cups-libs CVE-2024-47175 低危 1:1.6.3-40.el7 cups: libppd: remote command injection via attacker controlled data in PPD file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47175

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-09-26 22:15 修改: 2024-09-30 12:46

binutils CVE-2017-12449 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in _bfd_vms_save_sized_string function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12449

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 18:39

binutils CVE-2017-12451 低危 2.27-41.base.el7_7.2 binutils: out of bounds stack read in _bfd_xcoff_read_ar_hdr function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12451

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 18:37

binutils CVE-2017-12452 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in bfd_mach_o_i386_canonicalize_one_reloc function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12452

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 18:36

binutils CVE-2017-12453 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in __bfd_vms_slurp_eeom function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12453

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 18:35

binutils CVE-2017-12454 低危 2.27-41.base.el7_7.2 binutils: Arbitrary memory read in _bfd_vms_slurp_egs function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12454

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 13:05

binutils CVE-2017-12455 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in evax_bfd_print_emh function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12455

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 13:05

binutils CVE-2017-12456 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in read_symbol_stabs_debugging_inf function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12456

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2018-01-09 02:29

python-libs CVE-2018-1000030 低危 2.7.5-86.el7 python: Heap-Buffer-Overflow and Heap-Use-After-Free in Objects/fileobject.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000030

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-02-08 17:29 修改: 2020-08-24 17:37

python-libs CVE-2019-9674 低危 2.7.5-86.el7 python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40

python-libs CVE-2021-3737 低危 2.7.5-86.el7 python: urllib: HTTP client possible infinite loop on a 100 Continue response

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3737

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-04 19:15 修改: 2023-11-07 03:38

python-libs CVE-2024-0397 低危 2.7.5-86.el7 cpython: python: Memory race condition in ssl.SSLContext certificate store methods

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44

python-libs CVE-2024-4032 低危 2.7.5-86.el7 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35

python-libs CVE-2024-5642 低危 2.7.5-86.el7 python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35

python-libs CVE-2024-7592 低危 2.7.5-86.el7 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15

binutils CVE-2017-12457 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in bfd_make_section_with_flags function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12457

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 13:20

binutils CVE-2017-12458 低危 2.27-41.base.el7_7.2 binutils: out of bounds heap read in nlm_swap_auxiliary_headers_in function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12458

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-04 15:29 修改: 2017-08-07 14:23

binutils CVE-2017-12799 低危 2.27-41.base.el7_7.2 binutils: Heap-based 1 byte buffer over-write in elf_read_notes function in bfd/elf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12799

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-10 18:29 修改: 2018-01-09 02:29

binutils CVE-2017-12967 低危 2.27-41.base.el7_7.2 binutils: Stack-based buffer over-read in getsym function in tekhex.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12967

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-19 16:29 修改: 2019-10-03 00:03

python-lxml CVE-2014-3146 低危 3.2.1-4.el7 python-lxml: clean_html input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3146

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2014-05-14 19:55 修改: 2017-12-29 02:29

readline CVE-2016-7091 低危 6.2-11.el7 sudo: Possible info leak via INPUTRC

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7091

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-12-22 21:59 修改: 2016-12-23 18:17

binutils CVE-2017-13710 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the setup_group function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13710

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-27 16:29 修改: 2023-11-07 02:38

binutils CVE-2017-13716 低危 2.27-41.base.el7_7.2 binutils: Memory leak with the C++ symbol demangler routine in libiberty

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13716

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-28 21:29 修改: 2019-10-03 00:03

binutils CVE-2017-13757 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer over-read in elf_i386_get_synthetic_symtab in elf32-i386.c and elf_x86_64_get_synthetic_symtab in elf64-x86-64.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13757

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-29 23:29 修改: 2023-11-07 02:38

binutils CVE-2017-14128 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in the decode_line_info function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14128

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-04 20:29 修改: 2023-11-07 02:38

binutils CVE-2017-14129 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in the read_section function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14129

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-04 20:29 修改: 2023-11-07 02:38

binutils CVE-2017-14130 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in the _bfd_elf_parse_attributes function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14130

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-04 20:29 修改: 2023-11-07 02:38

binutils CVE-2017-14529 低危 2.27-41.base.el7_7.2 binutils: heap-based buffer over-read in bfd_getl16 function in peXXigen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14529

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-18 00:29 修改: 2023-11-07 02:39

binutils CVE-2017-14729 低危 2.27-41.base.el7_7.2 binutils: Heap buffer overflow in the *_get_synthetic_symtab functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14729

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-25 16:29 修改: 2023-11-07 02:39

rpm CVE-2021-20266 低危 4.11.3-40.el7 rpm: missing length checks in hdrblobInit()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29

binutils CVE-2017-14745 低危 2.27-41.base.el7_7.2 binutils: Integer overflow in the *_get_synthetic_symtab functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14745

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-26 16:29 修改: 2017-09-29 18:37

libcurl CVE-2016-0755 低危 7.29.0-54.el7_7.2 curl: NTLM credentials not-checked for proxy connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-0755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-01-29 20:59 修改: 2018-10-17 01:29

libcurl CVE-2016-8616 低危 7.29.0-54.el7_7.2 curl: Case insensitive password comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8616

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8621 低危 7.29.0-54.el7_7.2 curl: curl_getdate out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8621

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 22:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8622 低危 7.29.0-54.el7_7.2 curl: URL unescape heap overflow via integer truncation

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8622

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

libcurl CVE-2016-8623 低危 7.29.0-54.el7_7.2 curl: Use-after-free via shared cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8623

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

libcurl CVE-2016-9586 低危 7.29.0-54.el7_7.2 curl: printf floating point buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9586

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-04-23 18:29 修改: 2023-11-07 02:37

libcurl CVE-2017-1000100 低危 7.29.0-54.el7_7.2 curl: TFTP sends more than buffer size

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000100

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2018-11-13 11:29

rpm-build-libs CVE-2021-20266 低危 4.11.3-40.el7 rpm: missing length checks in hdrblobInit()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29

libcurl CVE-2017-7407 低危 7.29.0-54.el7_7.2 curl: --write-out out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7407

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-03 20:59 修改: 2019-10-03 00:03

libcurl CVE-2018-20483 低危 7.29.0-54.el7_7.2 wget: Information exposure in set_file_metadata function in xattr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20483

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-12-26 18:29 修改: 2020-08-24 17:37

libcurl CVE-2019-5436 低危 7.29.0-54.el7_7.2 7.29.0-57.el7 curl: TFTP receive heap buffer overflow in tftp_receive_packet() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11

libcurl CVE-2020-8231 低危 7.29.0-54.el7_7.2 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04

libcurl CVE-2021-22898 低危 7.29.0-54.el7_7.2 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47

libcurl CVE-2021-22925 低危 7.29.0-54.el7_7.2 curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11

libcurl CVE-2022-27781 低危 7.29.0-54.el7_7.2 curl: CERTINFO never-ending busy-loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

libcurl CVE-2022-35252 低危 7.29.0-54.el7_7.2 curl: Incorrect handling of control code characters in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00

rpm-libs CVE-2021-20266 低危 4.11.3-40.el7 rpm: missing length checks in hdrblobInit()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29

libcurl CVE-2022-43552 低危 7.29.0-54.el7_7.2 7.29.0-59.el7_9.2 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35

libcurl CVE-2023-27534 低危 7.29.0-54.el7_7.2 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

libcurl CVE-2023-28322 低危 7.29.0-54.el7_7.2 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15

libcurl CVE-2023-38546 低危 7.29.0-54.el7_7.2 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15

libcurl CVE-2024-7264 低危 7.29.0-54.el7_7.2 curl: libcurl: ASN.1 date parser overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35

binutils CVE-2017-14930 低危 2.27-41.base.el7_7.2 binutils: Memory leak in decode_line_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14930

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2019-10-03 00:03

libdb CVE-2019-2708 低危 5.3.21-25.el7 libdb: Denial of service in the Data Store component

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2708

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-04-23 19:32 修改: 2023-11-07 03:09

binutils CVE-2017-14932 低危 2.27-41.base.el7_7.2 binutils: Infinite loop in the decode_line_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14932

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

rpm-python CVE-2021-20266 低危 4.11.3-40.el7 rpm: missing length checks in hdrblobInit()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20266

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-04-30 12:15 修改: 2023-11-07 03:29

shadow-utils CVE-2023-4641 低危 2:4.6-5.el7 shadow-utils: possible password leak during passwd(1) change

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15

libdb-utils CVE-2019-2708 低危 5.3.21-25.el7 libdb: Denial of service in the Data Store component

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2708

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-04-23 19:32 修改: 2023-11-07 03:09

binutils CVE-2017-14933 低危 2.27-41.base.el7_7.2 binutils: Infinite loop in read_formatted_entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14933

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-14934 低危 2.27-41.base.el7_7.2 binutils: Infinite loop in process_debug_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14934

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-14938 低危 2.27-41.base.el7_7.2 binutils: Excessive memory allocation in _bfd_elf_slurp_version_tables

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14938

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-14939 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in the decode_line_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14939

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-14940 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the scan_unit_for_symbols

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14940

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-09-30 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-14974 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in the *_get_synthetic_symtab functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14974

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-02 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15020 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer overflow in parse_die

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15020

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15021 低危 2.27-41.base.el7_7.2 binutils: Heap-based buffer over-read in bfd_get_debug_link_info_1

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15021

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15022 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in dwarf2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15022

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

curl CVE-2016-0755 低危 7.29.0-54.el7_7.2 curl: NTLM credentials not-checked for proxy connection re-use

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-0755

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-01-29 20:59 修改: 2018-10-17 01:29

libgcc CVE-2015-5276 低危 4.8.5-39.el7 gcc: Predictable randomness from std::random_device

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5276

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-11-17 15:59 修改: 2019-02-12 19:05

libgcc CVE-2016-2226 低危 4.8.5-39.el7 gcc: Exploitable buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2226

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-08-12 01:29

libgcc CVE-2016-4487 低危 4.8.5-39.el7 gcc: Invalid write due to a use-after-free to array btypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4487

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2016-4488 低危 4.8.5-39.el7 gcc: Invalid write due to a use-after-free to array ktypevec

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4488

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2016-4489 低危 4.8.5-39.el7 gcc: Invalid write due to integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4489

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2016-4490 低危 4.8.5-39.el7 gcc: Write access violation

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4490

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2016-4491 低危 4.8.5-39.el7 gcc: Stack overflow due to infinite recursion in d_print_comp

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4491

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

sqlite CVE-2016-6153 低危 3.7.17-8.el7_7.1 sqlite: Tempdir selection vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6153

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-09-26 16:59 修改: 2023-11-07 02:33

sqlite CVE-2017-10989 低危 3.7.17-8.el7_7.1 sqlite: Heap-buffer overflow in the getNodeSize function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-10989

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-07-07 12:29 修改: 2019-10-03 00:03

sqlite CVE-2017-13685 低危 3.7.17-8.el7_7.1 sqlite: Local DoS via dump_callback function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-13685

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-08-29 06:29 修改: 2017-08-31 01:29

sqlite CVE-2017-15286 低危 3.7.17-8.el7_7.1 sqlite: NULL pointer dereference in tableColumnList

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15286

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-12 08:29 修改: 2017-10-27 14:18

sqlite CVE-2018-8740 低危 3.7.17-8.el7_7.1 sqlite: NULL pointer dereference with databases with schema corrupted with CREATE TABLE AS allows for denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-8740

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-03-17 00:29 修改: 2023-11-07 03:01

sqlite CVE-2019-19244 低危 3.7.17-8.el7_7.1 sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12

sqlite CVE-2020-35525 低危 3.7.17-8.el7_7.1 sqlite: Null pointer derreference in src/select.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35525

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-01 18:15 修改: 2023-07-06 19:15

sqlite CVE-2021-45346 低危 3.7.17-8.el7_7.1 sqlite: crafted SQL query allows a malicious user to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15

sqlite CVE-2023-36191 低危 3.7.17-8.el7_7.1 sqlite: CLI fault on missing -nonce

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36191

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-06-23 02:15 修改: 2023-11-07 04:16

sqlite CVE-2024-0232 低危 3.7.17-8.el7_7.1 sqlite: use-after-free bug in jsonParseAddNodeArray

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0232

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-01-16 14:15 修改: 2024-09-28 04:15

libgcc CVE-2016-4492 低危 4.8.5-39.el7 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4492

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2016-4493 低危 4.8.5-39.el7 gcc: Read access violations

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-4493

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-24 20:59 修改: 2017-07-28 01:29

libgcc CVE-2018-20657 低危 4.8.5-39.el7 libiberty: Memory leak in demangle_template function resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20657

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-01-02 14:29 修改: 2019-11-06 01:15

libgcc CVE-2019-14250 低危 4.8.5-39.el7 binutils: integer overflow in simple-object-elf.c leads to a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14250

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-07-24 04:15 修改: 2023-03-01 18:01

libgcc CVE-2021-3826 低危 4.8.5-39.el7 libiberty: Heap/stack buffer overflow in the dlang_lname function in d-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3826

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-01 21:15 修改: 2024-01-22 15:01

libgcc CVE-2021-46195 低危 4.8.5-39.el7 gcc: uncontrolled recursion in libiberty/rust-demangle.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46195

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-14 20:15 修改: 2022-01-22 01:38

libgcc CVE-2022-27943 低危 4.8.5-39.el7 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-26 13:15 修改: 2023-11-07 03:45

curl CVE-2016-8616 低危 7.29.0-54.el7_7.2 curl: Case insensitive password comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8616

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

curl CVE-2016-8621 低危 7.29.0-54.el7_7.2 curl: curl_getdate out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8621

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 22:29 修改: 2023-11-07 02:36

curl CVE-2016-8622 低危 7.29.0-54.el7_7.2 curl: URL unescape heap overflow via integer truncation

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8622

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-07-31 21:29 修改: 2023-11-07 02:36

curl CVE-2016-8623 低危 7.29.0-54.el7_7.2 curl: Use-after-free via shared cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-8623

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-08-01 06:29 修改: 2023-11-07 02:36

curl CVE-2016-9586 低危 7.29.0-54.el7_7.2 curl: printf floating point buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9586

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-04-23 18:29 修改: 2023-11-07 02:37

systemd CVE-2016-6349 低危 219-67.el7_7.3 oci-register-machine: information exposure for docker containers

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6349

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 20:59 修改: 2017-04-06 13:33

systemd CVE-2019-20386 低危 219-67.el7_7.3 219-78.el7 systemd: memory leak in button_open() in login/logind-button.c when udev events are received

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09

curl CVE-2017-1000100 低危 7.29.0-54.el7_7.2 curl: TFTP sends more than buffer size

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000100

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2018-11-13 11:29

libgcrypt CVE-2014-3591 低危 1.5.3-14.el7 libgcrypt: use ciphertext blinding for Elgamal decryption (new side-channel attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-3591

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-29 22:15 修改: 2019-12-05 18:06

libgcrypt CVE-2015-0837 低危 1.5.3-14.el7 libgcrypt: last-level cache side-channel attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-0837

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-11-29 22:15 修改: 2019-12-14 13:59

libidn CVE-2015-2059 低危 1.28-4.el7 libidn: out-of-bounds read with stringprep on invalid UTF-8

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2059

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2015-08-12 14:59 修改: 2018-10-30 16:27

libidn CVE-2015-8948 低危 1.28-4.el7 libidn: Out-of-bounds read due to use of fgets with fixed-size buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8948

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 20:59 修改: 2023-11-07 02:28

libidn CVE-2016-6261 低危 1.28-4.el7 libidn: Out of bounds stack read in idna_to_ascii_4i

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6261

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 20:59 修改: 2023-11-07 02:33

libidn CVE-2016-6262 低危 1.28-4.el7 libidn: Out-of-bounds read when reading zero byte as input

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6262

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 20:59 修改: 2023-11-07 02:33

libidn CVE-2016-6263 低危 1.28-4.el7 libidn: Crash when given invalid UTF-8 data on input

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6263

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2016-09-07 20:59 修改: 2023-11-07 02:33

libidn CVE-2017-14062 低危 1.28-4.el7 libidn2: Integer overflow in puny_decode.c/decode_digit

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14062

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-08-31 16:29 修改: 2020-12-07 20:17

curl CVE-2017-7407 低危 7.29.0-54.el7_7.2 curl: --write-out out of bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7407

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-04-03 20:59 修改: 2019-10-03 00:03

curl CVE-2018-20483 低危 7.29.0-54.el7_7.2 wget: Information exposure in set_file_metadata function in xattr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20483

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2018-12-26 18:29 修改: 2020-08-24 17:37

curl CVE-2019-5436 低危 7.29.0-54.el7_7.2 7.29.0-57.el7 curl: TFTP receive heap buffer overflow in tftp_receive_packet() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11

systemd-libs CVE-2016-6349 低危 219-67.el7_7.3 oci-register-machine: information exposure for docker containers

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-6349

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-03-29 20:59 修改: 2017-04-06 13:33

systemd-libs CVE-2019-20386 低危 219-67.el7_7.3 219-78.el7 systemd: memory leak in button_open() in login/logind-button.c when udev events are received

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09

curl CVE-2020-8231 低危 7.29.0-54.el7_7.2 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04

libjpeg-turbo CVE-2014-9092 低危 1.2.90-8.el7 libjpeg-turbo: denial of service via specially-crafted JPEG file

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-9092

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-10 13:29 修改: 2018-07-12 01:29

libjpeg-turbo CVE-2017-15232 低危 1.2.90-8.el7 libjpeg-turbo: NULL pointer dereference in jdpostct.c and jquant1.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15232

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-11 03:29 修改: 2018-07-11 01:29

tar CVE-2018-20482 低危 2:1.26-35.el7 tar: Infinite read loop in sparse_dump_region function in sparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20482

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2018-12-26 18:29 修改: 2021-11-30 19:52

tar CVE-2019-9923 低危 2:1.26-35.el7 tar: null-pointer dereference in pax_decode_header in sparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13

tar CVE-2021-20193 低危 2:1.26-35.el7 tar: Memory leak in read_header() in list.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15

tar CVE-2023-39804 低危 2:1.26-35.el7 tar: Incorrectly handled extension attributes in PAX archives can lead to a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39804

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-03-27 04:15 修改: 2024-11-12 19:35

libjpeg-turbo CVE-2017-9614 低危 1.2.90-8.el7 libjpeg-turbo: Invalid memory access in the fill_input_buffer function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9614

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-07-27 06:29 修改: 2024-08-05 17:15

libjpeg-turbo CVE-2019-13960 低危 1.2.90-8.el7 libjpeg-turbo: denial of service due to incorrect width and height value of JPEG image

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13960

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-18 19:15 修改: 2024-08-05 00:15

curl CVE-2021-22898 低危 7.29.0-54.el7_7.2 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47

curl CVE-2021-22925 低危 7.29.0-54.el7_7.2 curl: Incorrect fix for CVE-2021-22898 TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22925

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11

util-linux CVE-2015-5218 低危 2.23.2-61.el7_7.1 colcrt: global-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5218

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-09 16:59 修改: 2018-10-30 16:27

util-linux CVE-2021-37600 低危 2.23.2-61.el7_7.1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15

curl CVE-2022-27781 低危 7.29.0-54.el7_7.2 curl: CERTINFO never-ending busy-loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01

curl CVE-2022-35252 低危 7.29.0-54.el7_7.2 curl: Incorrect handling of control code characters in cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00

libmount CVE-2015-5218 低危 2.23.2-61.el7_7.1 colcrt: global-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-5218

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2015-11-09 16:59 修改: 2018-10-30 16:27

libmount CVE-2021-37600 低危 2.23.2-61.el7_7.1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15

libpng CVE-2015-8540 低危 2:1.5.13-7.el7_2 libpng: underflow read in png_check_keyword()

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-8540

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2016-04-14 14:59 修改: 2023-11-07 02:28

libpng CVE-2016-10087 低危 2:1.5.13-7.el7_2 libpng: NULL pointer dereference in png_set_text_2()

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10087

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-01-30 22:59 修改: 2023-11-07 02:29

libpng CVE-2017-12652 低危 2:1.5.13-7.el7_2 2:1.5.13-8.el7 libpng: does not check length of chunks against user limit

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12652

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2019-07-10 15:15 修改: 2023-11-07 02:38

libpng CVE-2022-3857 低危 2:1.5.13-7.el7_2 libpng: Null pointer dereference leads to segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3857

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-06 23:15 修改: 2024-10-09 04:15

curl CVE-2022-43552 低危 7.29.0-54.el7_7.2 7.29.0-59.el7_9.2 curl: Use-after-free triggered by an HTTP proxy deny response

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35

curl CVE-2023-27534 低危 7.29.0-54.el7_7.2 curl: SFTP path ~ resolving discrepancy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54

curl CVE-2023-28322 低危 7.29.0-54.el7_7.2 curl: more POST-after-PUT confusion

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15

curl CVE-2023-38546 低危 7.29.0-54.el7_7.2 curl: cookie injection with none file

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15

vim-minimal CVE-2017-1000382 低危 2:7.4.629-6.el7 vim: Ignores umask when creating a swap file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000382

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-10-31 20:29 修改: 2017-11-27 16:24

vim-minimal CVE-2017-11109 低危 2:7.4.629-6.el7 vim: Use-after-free via crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11109

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-07-08 17:29 修改: 2019-08-03 13:15

vim-minimal CVE-2017-17087 低危 2:7.4.629-6.el7 vim: Sets the group ownership of a .swp file to the editor's primary group

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17087

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-12-01 08:29 修改: 2022-02-20 05:58

vim-minimal CVE-2017-5953 低危 2:7.4.629-6.el7 vim: Tree length values not validated properly when handling a spell file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5953

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-10 07:59 修改: 2023-11-07 02:49

vim-minimal CVE-2017-6350 低危 2:7.4.629-6.el7 vim: Integer overflow at an unserialize_uep memory allocation site

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6350

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2017-02-27 07:59 修改: 2023-11-07 02:49

vim-minimal CVE-2021-3236 低危 2:7.4.629-6.el7 vim: NULL pointer dereference in ex_buffer_all method

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3236

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-08-11 14:15 修改: 2023-09-15 14:15

vim-minimal CVE-2021-3903 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3903

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-10-27 21:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-3927 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in gchar_cursor() in misc1.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3927

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-05 15:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-3974 低危 2:7.4.629-6.el7 vim: Use after free in regexp_nfa.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3974

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-11-19 11:15 修改: 2023-11-07 03:38

vim-minimal CVE-2021-4069 低危 2:7.4.629-6.el7 vim: use-after-free in ex_open() in src/ex_docmd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4069

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-06 12:15 修改: 2023-11-07 03:40

vim-minimal CVE-2021-4166 低危 2:7.4.629-6.el7 vim: out-of-bounds read in do_arg_all() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4166

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2021-12-25 19:15 修改: 2023-11-07 03:40

vim-minimal CVE-2022-0351 低危 2:7.4.629-6.el7 vim: access of memory location before start of buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0351

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-01-25 18:15 修改: 2022-11-09 19:20

vim-minimal CVE-2022-1154 低危 2:7.4.629-6.el7 vim: use after free in utf_ptr2char

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1154

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-03-30 12:15 修改: 2023-11-07 03:41

vim-minimal CVE-2022-1619 低危 2:7.4.629-6.el7 vim: heap-buffer-overflow in cmdline_erase_chars of ex_getln.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1619

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-05-08 10:15 修改: 2023-11-07 03:42

vim-minimal CVE-2022-1720 低危 2:7.4.629-6.el7 vim: buffer over-read in grab_file_name() in findfile.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1720

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-20 15:15 修改: 2023-11-07 03:42

vim-minimal CVE-2022-2124 低危 2:7.4.629-6.el7 vim: out of bounds read in current_quote()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2124

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-19 10:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2125 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow in get_lisp_indent()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2125

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-19 12:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2126 低危 2:7.4.629-6.el7 vim: out of bounds read in suggest_trie_walk()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2126

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-19 13:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2129 低危 2:7.4.629-6.el7 vim: out of bounds write in vim_regsub_both()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2129

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-19 19:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2175 低危 2:7.4.629-6.el7 vim: buffer over-read in put_on_cmdline() at ex_getln.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2175

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-23 13:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2182 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow through parse_cmd_address() in function utf_ptr2char

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2182

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-23 18:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2183 低危 2:7.4.629-6.el7 vim: out-of-bounds read through get_lisp_indent() in function get_lisp_indent

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2183

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-23 19:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2206 低危 2:7.4.629-6.el7 vim: out-of-bound read in function msg_outtrans_attr

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2206

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-26 19:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2207 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in function ins_bs

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2207

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-27 12:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2208 低危 2:7.4.629-6.el7 vim: null pointer dereference in function diff_check

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2208

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-27 13:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2210 低危 2:7.4.629-6.el7 vim: out-of-bound write in function ml_append_int

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2210

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-27 16:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2231 低危 2:7.4.629-6.el7 vim: null pointer derefernce in function skipwhite may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2231

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-06-28 20:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2284 低危 2:7.4.629-6.el7 vim: out of bounds read in utfc_ptr2len() at mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2284

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-02 15:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2285 低危 2:7.4.629-6.el7 vim: integer overflow in del_typebuf() at getchar.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2285

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-02 16:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2286 低危 2:7.4.629-6.el7 vim: out of bounds read in ins_bytes() at change.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2286

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-02 19:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2287 低危 2:7.4.629-6.el7 vim: out of bounds read in suggest_trie_walk() at spellsuggest.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2287

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-02 22:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2288 低危 2:7.4.629-6.el7 vim: out of bounds write in parse_command_modifiers() at ex_docmd.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2288

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-03 13:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2289 低危 2:7.4.629-6.el7 vim: use after free in ex_diffgetput() at diff.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2289

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-03 15:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2343 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in ins_compl_add() in insexpand.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2343

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-08 18:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2344 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in ins_compl_add() in insexpand.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2344

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-08 19:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2345 低危 2:7.4.629-6.el7 vim: use-after-free in skipwhite() in charset.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2345

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-07-08 22:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2571 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow in vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2571

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-01 15:15 修改: 2022-08-04 23:31

vim-minimal CVE-2022-2580 低危 2:7.4.629-6.el7 vim: Out-of-bounds Read in vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2580

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-01 15:15 修改: 2022-08-04 23:30

vim-minimal CVE-2022-2581 低危 2:7.4.629-6.el7 vim: Out-of-bounds Read in vim src/regexp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2581

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-01 15:15 修改: 2022-08-04 23:30

vim-minimal CVE-2022-2598 低危 2:7.4.629-6.el7 vim: Undefined Behavior for Input to API in vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2598

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-01 15:15 修改: 2023-07-11 08:15

vim-minimal CVE-2022-2816 低危 2:7.4.629-6.el7 vim: out-of-bounds read in check_vim9_unlet() at src/vim9cmds.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2816

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-15 22:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2817 低危 2:7.4.629-6.el7 vim: heap use-after-free in string_quote() at src/strings.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2817

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-15 23:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2819 低危 2:7.4.629-6.el7 vim: heap buffer overflow in compile_lock_unlock() at src/vim9cmds.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2819

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-15 11:21 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2845 低危 2:7.4.629-6.el7 vim: Buffer Under-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2845

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-17 15:15 修改: 2023-07-10 16:15

vim-minimal CVE-2022-2849 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in latin_ptr2len() at src/mbyte.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2849

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-17 18:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2862 低危 2:7.4.629-6.el7 vim: heap use-after-free in generate_PCALL() at src/vim9instr.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2862

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-17 20:15 修改: 2023-11-07 03:46

vim-minimal CVE-2022-2874 低危 2:7.4.629-6.el7 vim: NULL pointer dereference in generate_loadvar() in vim9compile.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2874

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-18 16:15 修改: 2023-05-03 12:16

vim-minimal CVE-2022-2889 低危 2:7.4.629-6.el7 vim: use-after-free in find_var_also_in_script() in evalvars.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2889

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-19 13:15 修改: 2023-11-07 03:47

vim-minimal CVE-2022-2923 低危 2:7.4.629-6.el7 vim: null pointer dereference in function sug_filltree

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2923

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-22 21:15 修改: 2023-11-07 03:47

vim-minimal CVE-2022-2946 低危 2:7.4.629-6.el7 vim: use after free in function vim_vsnprintf_typval

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2946

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-23 17:15 修改: 2023-11-07 03:47

vim-minimal CVE-2022-2980 低危 2:7.4.629-6.el7 vim: null pointer dereference in do_mouse() at src/mouse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2980

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:47

vim-minimal CVE-2022-3037 低危 2:7.4.629-6.el7 vim: use after free in function qf_buf_add_line( )

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3037

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-08-30 21:15 修改: 2023-11-07 03:50

vim-minimal CVE-2022-3153 低危 2:7.4.629-6.el7 vim: null pointer dereference in vim_regcomp()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3153

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-08 15:15 修改: 2023-05-03 12:16

vim-minimal CVE-2022-3234 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3234

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-17 22:15 修改: 2023-11-07 03:50

vim-minimal CVE-2022-3235 低危 2:7.4.629-6.el7 vim: Use After Free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3235

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-18 20:15 修改: 2023-11-07 03:50

vim-minimal CVE-2022-3256 低危 2:7.4.629-6.el7 vim: use-after-free in movemark() at mark.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3256

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-22 13:15 修改: 2023-11-07 03:51

vim-minimal CVE-2022-3296 低危 2:7.4.629-6.el7 vim: stack buffer overflow in ex_finally() in ex_eval.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3296

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-25 17:15 修改: 2023-11-07 03:51

vim-minimal CVE-2022-3352 低危 2:7.4.629-6.el7 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3352

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-09-29 12:15 修改: 2023-11-07 03:51

vim-minimal CVE-2022-3520 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3520

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-12-02 19:15 修改: 2023-05-03 12:16

vim-minimal CVE-2022-3591 低危 2:7.4.629-6.el7 vim: Use After Free

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3591

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-12-02 17:15 修改: 2023-05-03 12:16

vim-minimal CVE-2022-3705 低危 2:7.4.629-6.el7 vim: a use after free in the function qf_update_buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3705

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-10-26 20:15 修改: 2023-11-07 03:51

vim-minimal CVE-2022-4292 低危 2:7.4.629-6.el7 vim: use-after-free in did_set_spelllang() in src/spell.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4292

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2022-12-05 19:15 修改: 2023-11-07 03:57

vim-minimal CVE-2023-0049 低危 2:7.4.629-6.el7 vim: out-of-bounds read in function build_stl_str_hl

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0049

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-04 16:15 修改: 2023-11-07 03:59

vim-minimal CVE-2023-0051 低危 2:7.4.629-6.el7 vim: heap-based buffer overflow in msg_puts_printf() in message.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0051

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-04 18:15 修改: 2023-05-03 12:16

vim-minimal CVE-2023-0054 低危 2:7.4.629-6.el7 vim: out-of-bounds write in do_string_sub() in eval.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0054

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-04 19:15 修改: 2023-06-12 20:15

vim-minimal CVE-2023-0288 低危 2:7.4.629-6.el7 vim: a heap-based buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0288

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-13 16:15 修改: 2023-11-07 04:00

vim-minimal CVE-2023-0433 低危 2:7.4.629-6.el7 vim: reading past the end of a line when formatting text

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0433

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-21 15:15 修改: 2023-11-07 04:00

vim-minimal CVE-2023-0512 低危 2:7.4.629-6.el7 vim: divide by zero in adjust_skipcol() at move.ca

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0512

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-01-30 16:15 修改: 2023-11-07 04:00

vim-minimal CVE-2023-1127 低危 2:7.4.629-6.el7 vim: Divide By Zero in vim/vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1127

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-01 19:15 修改: 2023-11-07 04:02

vim-minimal CVE-2023-1170 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1170

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-03 23:15 修改: 2023-11-07 04:02

vim-minimal CVE-2023-1175 低危 2:7.4.629-6.el7 vim: Incorrect Calculation of Buffer Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1175

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-04 16:15 修改: 2023-11-07 04:02

vim-minimal CVE-2023-1264 低危 2:7.4.629-6.el7 vim: NULL pointer dereference issue in utfc_ptr2len

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1264

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-03-07 22:15 修改: 2023-11-07 04:02

vim-minimal CVE-2023-2609 低危 2:7.4.629-6.el7 vim: NULL Pointer Dereference in get_register() at register.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2609

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-05-09 18:15 修改: 2023-12-23 07:15

vim-minimal CVE-2023-2610 低危 2:7.4.629-6.el7 vim: integer overflow vulnerability in vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2610

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-05-09 22:15 修改: 2023-12-23 07:15

vim-minimal CVE-2023-46246 低危 2:7.4.629-6.el7 vim: Integer Overflow in :history command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46246

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-27 19:15 修改: 2023-12-17 03:15

vim-minimal CVE-2023-48231 低危 2:7.4.629-6.el7 vim: use after free in win_close()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48231

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2023-12-28 17:39

vim-minimal CVE-2023-48232 低危 2:7.4.629-6.el7 vim: floating point exception in adjust_plines_for_skipcol()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48232

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:37

vim-minimal CVE-2023-48233 低危 2:7.4.629-6.el7 vim: overflow with count for :s command

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48233

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:38

vim-minimal CVE-2023-48234 低危 2:7.4.629-6.el7 vim: overflow in nv_z_get_count

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48234

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33

vim-minimal CVE-2023-48235 低危 2:7.4.629-6.el7 vim: overflow in ex address parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48235

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33

vim-minimal CVE-2023-48236 低危 2:7.4.629-6.el7 vim: overflow in get_number

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48236

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:38

vim-minimal CVE-2023-48237 低危 2:7.4.629-6.el7 vim: buffer overflow in shift_line

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48237

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-16 23:15 修改: 2024-01-25 21:33

vim-minimal CVE-2023-48706 低危 2:7.4.629-6.el7 vim: use-after-free in ex_substitute in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48706

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-11-22 22:15 修改: 2024-01-05 18:15

vim-minimal CVE-2023-5344 低危 2:7.4.629-6.el7 vim: Heap-based Buffer Overflow in trunc_string()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5344

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-02 20:15 修改: 2023-12-13 01:15

vim-minimal CVE-2023-5441 低危 2:7.4.629-6.el7 vim: NULL pointer dereference in screen_line() in src/screen.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5441

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-05 21:15 修改: 2023-11-15 02:33

vim-minimal CVE-2023-5535 低危 2:7.4.629-6.el7 vim: use after free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5535

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2023-10-11 20:15 修改: 2023-11-15 02:31

vim-minimal CVE-2024-22667 低危 2:7.4.629-6.el7 vim: Stack buffer over flow in did_set_langmap function in map.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22667

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-02-05 08:15 修改: 2024-02-23 16:15

vim-minimal CVE-2024-41965 低危 2:7.4.629-6.el7 vim: Double-Free Vulnerability in Vim Could Cause Application Crashes

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-41965

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-01 22:15 修改: 2024-08-09 14:09

vim-minimal CVE-2024-43374 低危 2:7.4.629-6.el7 vim: use-after-free in alist_add() in src/arglist.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43374

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-16 02:15 修改: 2024-08-19 13:00

vim-minimal CVE-2024-43802 低危 2:7.4.629-6.el7 vim: Heap Buffer Overflow in Vim's Typeahead Buffer Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43802

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-08-26 19:15 修改: 2024-08-27 13:02

vim-minimal CVE-2024-45306 低危 2:7.4.629-6.el7 vim: heap-buffer-overflow in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45306

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-09-02 18:15 修改: 2024-10-01 15:20

vim-minimal CVE-2024-47814 低危 2:7.4.629-6.el7 vim: use-after-free when closing buffers in Vim

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47814

镜像层: sha256:77b174a6a187b610e4699546bd973a8d1e77663796e3724318a2a4b24cb07ea0

发布日期: 2024-10-07 22:15 修改: 2024-10-10 12:57

curl CVE-2024-7264 低危 7.29.0-54.el7_7.2 curl: libcurl: ASN.1 date parser overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35

binutils CVE-2017-15023 低危 2.27-41.base.el7_7.2 binutils: NULL pointer dereference in read_formatted_entries

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15023

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15024 低危 2.27-41.base.el7_7.2 binutils: Infinite recursion in find_abstract_instance_name

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15024

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15025 低危 2.27-41.base.el7_7.2 binutils: Divide-by-zero in decode_line_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15025

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-05 01:29 修改: 2023-11-07 02:39

binutils CVE-2017-15225 低危 2.27-41.base.el7_7.2 binutils: Memory leak in _bfd_dwarf2_cleanup_debug_info

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15225

镜像层: sha256:7c5d68a106fe0b09f4a584e81c5f04a3dfe693bf1b54af6f98de3fe3f8663a3f

发布日期: 2017-10-10 23:29 修改: 2023-11-07 02:39

Java (jar)
低危漏洞:3 中危漏洞:48 高危漏洞:129 严重漏洞:20
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09

com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09

com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09

com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.10.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.10.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26

org.apache.derby:derby CVE-2022-46337 严重 10.14.1.0 10.14.3, 10.15.2.1, 10.16.1.2, 10.17.1.0 A cleverly devised username might bypass LDAP authentication checks. I ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46337

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-11-20 09:15 修改: 2024-04-26 16:08

org.apache.logging.log4j:log4j-core CVE-2021-44228 严重 2.12.1 2.15.0, 2.3.1, 2.12.2 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44228

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-10 10:15 修改: 2024-07-24 17:08

org.apache.logging.log4j:log4j-core CVE-2021-45046 严重 2.12.1 2.16.0, 2.12.2 log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45046

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-14 19:15 修改: 2024-10-31 12:17

org.apache.logging.log4j:log4j-core CVE-2021-44228 严重 2.9.1 2.15.0, 2.3.1, 2.12.2 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44228

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-10 10:15 修改: 2024-07-24 17:08

org.apache.logging.log4j:log4j-core CVE-2021-45046 严重 2.9.1 2.16.0, 2.12.2 log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45046

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-14 19:15 修改: 2024-10-31 12:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.10.1 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.10.1 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.10.1 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.10.1 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.10.1 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17

com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.10.1 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.10.1 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.10.1 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.10.1 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.10.1 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.10.1 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.10.1 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.10.1 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.10.1 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.10.1 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20

com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32

com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22

com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22

com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22

com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56

com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.10.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.10.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57

com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.10.1 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12

com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.10.1 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12

com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.10.1 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12

com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.10.1 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28

com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.10.1 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28

com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.10.1 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28

com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.10.1 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15

com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.10.1 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15

com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.10.1 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15

com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.10.1 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10

com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.10.1 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10

com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.10.1 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10

com.fasterxml.jackson.dataformat:jackson-dataformat-cbor CVE-2020-28491 高危 2.9.10 2.11.4, 2.12.1 jackson-dataformat-cbor: Unchecked allocation of byte buffer can cause a java.lang.OutOfMemoryError exception

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28491

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-02-18 16:15 修改: 2022-12-06 21:44

com.google.code.gson:gson CVE-2022-25647 高危 2.8.2 2.8.9 com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33

com.google.code.gson:gson CVE-2022-25647 高危 2.8.5 2.8.9 com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33

com.microsoft.azure:azure-eventhubs CVE-2020-16971 高危 2.2.0 3.2.1 Azure SDK for Java Security Feature Bypass Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16971

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-10 00:15 修改: 2024-10-17 01:15

commons-io:commons-io CVE-2024-47554 高危 2.5 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50

io.netty:netty-all CVE-2019-16869 高危 4.1.18.Final 4.1.42.Final netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06

io.netty:netty-all CVE-2019-16869 高危 4.1.30.Final 4.1.42.Final netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06

io.netty:netty-all CVE-2019-16869 高危 4.1.30.Final 4.1.42.Final netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06

com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.10.1 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.10.1 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15

com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.10.1 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15

org.apache.logging.log4j:log4j-core CVE-2021-45105 高危 2.12.1 2.12.3, 2.17.0, 2.3.1 log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45105

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-18 12:15 修改: 2022-10-06 17:31

com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.10.1 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.10.1 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36

org.apache.logging.log4j:log4j-core CVE-2021-45105 高危 2.9.1 2.12.3, 2.17.0, 2.3.1 log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45105

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-18 12:15 修改: 2022-10-06 17:31

org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.1.0.1 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17

org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.1.0.1 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46

org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.1.7.3 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17

org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.1.7.3 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46

org.yaml:snakeyaml CVE-2017-18640 高危 1.18 1.26 snakeyaml: Billion laughs attack via alias feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18640

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-12-12 03:15 修改: 2023-11-07 02:41

org.yaml:snakeyaml CVE-2022-1471 高危 1.18 2.0 SnakeYaml: Constructor Deserialization Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15

org.yaml:snakeyaml CVE-2022-25857 高危 1.18 1.31 snakeyaml: Denial of Service due to missing nested depth limitation for collections

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2017-18640 高危 1.23 1.26 snakeyaml: Billion laughs attack via alias feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18640

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-12-12 03:15 修改: 2023-11-07 02:41

org.yaml:snakeyaml CVE-2017-18640 高危 1.23 1.26 snakeyaml: Billion laughs attack via alias feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18640

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2019-12-12 03:15 修改: 2023-11-07 02:41

org.yaml:snakeyaml CVE-2022-1471 高危 1.23 2.0 SnakeYaml: Constructor Deserialization Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15

org.yaml:snakeyaml CVE-2022-1471 高危 1.23 2.0 SnakeYaml: Constructor Deserialization Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15

org.yaml:snakeyaml CVE-2022-25857 高危 1.23 1.31 snakeyaml: Denial of Service due to missing nested depth limitation for collections

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-25857 高危 1.23 1.31 snakeyaml: Denial of Service due to missing nested depth limitation for collections

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15

xalan:xalan CVE-2022-34169 高危 2.7.2 2.7.3 OpenJDK: integer truncation issue in Xalan-J (JAXP, 8285407)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-34169

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-07-19 18:15 修改: 2024-06-21 19:15

org.bouncycastle:bcprov-jdk15on CVE-2023-33201 中危 1.61 bouncycastle: potential blind LDAP injection attack using a self-signed certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15

org.bouncycastle:bcprov-jdk15on CVE-2023-33202 中危 1.61 1.70 bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53

org.bouncycastle:bcprov-jdk15on CVE-2023-33202 中危 1.61 1.70 bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53

org.bouncycastle:bcprov-jdk15on CVE-2024-29857 中危 1.61 1.78 org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:17 修改: 2024-08-15 19:35

org.bouncycastle:bcprov-jdk15on CVE-2024-29857 中危 1.61 1.78 org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:17 修改: 2024-08-15 19:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30171 中危 1.61 1.78 bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30171 中危 1.61 1.78 bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30172 中危 1.61 1.78 org.bouncycastle:bcprov-jdk18on: Infinite loop in ED25519 verification in the ScalarUtil class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30172

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-11-05 18:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30172 中危 1.61 1.78 org.bouncycastle:bcprov-jdk18on: Infinite loop in ED25519 verification in the ScalarUtil class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30172

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-11-05 18:35

org.bouncycastle:bcprov-jdk15on CVE-2020-15522 中危 1.62 1.66 bouncycastle: Timing issue within the EC math library

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15522

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-20 12:15 修改: 2021-06-22 09:15

org.bouncycastle:bcprov-jdk15on CVE-2023-33201 中危 1.62 bouncycastle: potential blind LDAP injection attack using a self-signed certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15

org.bouncycastle:bcprov-jdk15on CVE-2023-33202 中危 1.62 1.70 bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53

org.bouncycastle:bcprov-jdk15on CVE-2024-29857 中危 1.62 1.78 org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:17 修改: 2024-08-15 19:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30171 中危 1.62 1.78 bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35

org.bouncycastle:bcprov-jdk15on CVE-2024-30172 中危 1.62 1.78 org.bouncycastle:bcprov-jdk18on: Infinite loop in ED25519 verification in the ScalarUtil class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30172

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:21 修改: 2024-11-05 18:35

org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.5 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17

org.apache.kafka:kafka-clients CVE-2021-38153 中危 2.3.0 2.6.3, 2.7.2, 2.8.1 Kafka: Timing Attack Vulnerability for Apache Kafka Connect and Clients

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38153

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-09-22 09:15 修改: 2023-11-07 03:37

org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.1.0.1 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59

org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.1.0.1 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 17:15 修改: 2023-06-27 16:04

org.apache.kafka:kafka-clients CVE-2024-31141 中危 2.3.0 3.7.1 kafka-clients: privilege escalation to filesystem read-access via automatic ConfigProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31141

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-11-19 09:15 修改: 2024-11-19 21:57

com.google.guava:guava CVE-2018-10237 中危 22.0 24.1.1-android guava: Unbounded memory allocation in AtomicDoubleArray and CompoundOrdering classes allow remote attackers to cause a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10237

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2018-04-26 21:29 修改: 2023-11-07 02:51

org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.1.7.3 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59

org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.1.7.3 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-15 17:15 修改: 2023-06-27 16:04

com.rabbitmq:amqp-client CVE-2023-46120 中危 5.7.2 5.18.0 RabbitMQ Java client's Lack of Message Size Limitation leads to Remote DoS Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46120

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-10-25 18:17 修改: 2023-11-01 16:42

com.google.guava:guava CVE-2023-2976 中危 22.0 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15

org.apache.logging.log4j:log4j-core CVE-2021-44832 中危 2.12.1 2.3.2, 2.12.4, 2.17.1 log4j-core: remote code execution via JDBC Appender

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44832

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-28 20:15 修改: 2023-11-07 03:39

org.yaml:snakeyaml CVE-2022-38749 中危 1.18 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38750 中危 1.18 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38751 中危 1.18 1.31 snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38752 中危 1.18 1.32 snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-41854 中危 1.18 1.32 dev-java/snakeyaml: DoS via stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15

commons-io:commons-io CVE-2021-29425 中危 2.5 2.7 apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32

org.apache.derby:derby CVE-2018-1313 中危 10.14.1.0 10.14.2.0 derby: Externally-controlled input vulnerability allows remote attacker to boot a database under attacker's control

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1313

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2018-05-07 13:29 修改: 2023-11-07 02:55

org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.2 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17

org.apache.logging.log4j:log4j-core CVE-2021-44832 中危 2.9.1 2.3.2, 2.12.4, 2.17.1 log4j-core: remote code execution via JDBC Appender

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44832

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-28 20:15 修改: 2023-11-07 03:39

org.bouncycastle:bcprov-jdk15on CVE-2020-15522 中危 1.61 1.66 bouncycastle: Timing issue within the EC math library

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15522

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-20 12:15 修改: 2021-06-22 09:15

org.bouncycastle:bcprov-jdk15on CVE-2020-15522 中危 1.61 1.66 bouncycastle: Timing issue within the EC math library

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15522

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-20 12:15 修改: 2021-06-22 09:15

org.yaml:snakeyaml CVE-2022-38749 中危 1.23 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38749 中危 1.23 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38750 中危 1.23 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38750 中危 1.23 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38751 中危 1.23 1.31 snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38751 中危 1.23 1.31 snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38752 中危 1.23 1.32 snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-38752 中危 1.23 1.32 snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15

org.yaml:snakeyaml CVE-2022-41854 中危 1.23 1.32 dev-java/snakeyaml: DoS via stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15

org.yaml:snakeyaml CVE-2022-41854 中危 1.23 1.32 dev-java/snakeyaml: DoS via stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15

org.bouncycastle:bcprov-jdk15on CVE-2023-33201 中危 1.61 bouncycastle: potential blind LDAP injection attack using a self-signed certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15

com.google.guava:guava CVE-2020-8908 低危 22.0 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30

org.apache.logging.log4j:log4j-core CVE-2020-9488 低危 2.12.1 2.13.2, 2.12.3, 2.3.2 log4j: improper validation of certificate with host mismatch in SMTP appender

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9488

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-27 16:15 修改: 2023-11-07 03:26

org.apache.logging.log4j:log4j-core CVE-2020-9488 低危 2.9.1 2.13.2, 2.12.3, 2.3.2 log4j: improper validation of certificate with host mismatch in SMTP appender

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9488

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-27 16:15 修改: 2023-11-07 03:26

Ruby (gemspec)
低危漏洞:5 中危漏洞:20 高危漏洞:34 严重漏洞:4
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
bundler CVE-2016-7954 严重 1.17.3 >= 2.0.0 rubygem-bundler: Code execution via gem name collision in bundler

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-7954

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2016-12-22 22:59 修改: 2019-07-02 14:55

jmespath CVE-2022-32511 严重 1.4.0 >= 1.6.1 jmespath.rb (aka JMESPath for Ruby) before 1.6.1 uses JSON.load in a s ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32511

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-06-06 22:15 修改: 2023-11-07 03:47

puma CVE-2022-24790 严重 4.3.1 ~> 4.3.12, >= 5.6.4 puma-5.6.4: http request smuggling vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24790

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-03-30 22:15 修改: 2023-11-07 03:44

rack CVE-2022-30123 严重 2.2.2 ~> 2.0.9, >= 2.0.9.1, ~> 2.1.4, >= 2.1.4.1, >= 2.2.3.1 rubygem-rack: crafted requests can cause shell escape sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30123

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-05 22:15 修改: 2023-12-08 22:15

bundler CVE-2020-36327 高危 1.17.3 = 2.2.10, >= 2.2.18 rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36327

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-04-29 03:15 修改: 2023-11-07 03:22

arr-pm CVE-2022-39224 高危 0.0.10 >= 0.0.12 arr-pm vulnerable to arbitrary shell execution when extracting or listing files contained in a malicious rpm

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39224

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-09-21 23:15 修改: 2022-09-26 13:41

json CVE-2020-10663 高危 1.8.6 >= 2.3.0 rubygem-json: Unsafe object creation vulnerability in JSON

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10663

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-28 21:15 修改: 2023-11-07 03:14

json CVE-2020-10663 高危 2.2.0 >= 2.3.0 rubygem-json: Unsafe object creation vulnerability in JSON

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10663

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-04-28 21:15 修改: 2023-11-07 03:14

nokogiri CVE-2018-25032 高危 1.10.8 >= 1.13.4 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56

nokogiri CVE-2021-30560 高危 1.10.8 >= 1.13.2 Use after free in Blink XSLT in Google Chrome prior to 91.0.4472.164 a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-30560

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-08-03 19:15 修改: 2024-03-27 14:45

nokogiri CVE-2021-3517 高危 1.10.8 >= 1.11.4 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38

nokogiri CVE-2021-3518 高危 1.10.8 >= 1.11.4 libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38

nokogiri CVE-2021-41098 高危 1.10.8 >= 1.12.5 rubygem-nokogiri: XEE on JRuby

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41098

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-09-27 20:15 修改: 2021-10-06 20:17

nokogiri CVE-2022-24836 高危 1.10.8 >= 1.13.4 nokogiri: ReDoS in HTML encoding detection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24836

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-04-11 22:15 修改: 2023-11-07 03:44

nokogiri CVE-2022-24839 高危 1.10.8 >= 1.13.4 nokogiri: Uncontrolled Resource Consumption in org.cyberneko.html (nokogiri fork)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24839

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-04-11 22:15 修改: 2023-02-23 20:19

nokogiri CVE-2022-29181 高危 1.10.8 >= 1.13.6 rubygem-nokogiri: Improper Handling of Unexpected Data Type in Nokogiri

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29181

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-05-20 19:15 修改: 2023-02-16 02:31

nokogiri GHSA-7rrm-v45f-jp64 高危 1.10.8 >= 1.11.4 Update packaged dependency libxml2 from 2.9.10 to 2.9.12

漏洞详情: https://github.com/advisories/GHSA-7rrm-v45f-jp64

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-cgx6-hpwq-fhv5 高危 1.10.8 >= 1.13.5 Integer Overflow or Wraparound in libxml2 affects Nokogiri

漏洞详情: https://github.com/advisories/GHSA-cgx6-hpwq-fhv5

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-fq42-c5rg-92c2 高危 1.10.8 1.13.2 Vulnerable dependencies in Nokogiri

漏洞详情: https://github.com/advisories/GHSA-fq42-c5rg-92c2

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-gx8x-g87m-h5q6 高危 1.10.8 1.13.4 Denial of Service (DoS) in Nokogiri on JRuby

漏洞详情: https://github.com/advisories/GHSA-gx8x-g87m-h5q6

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-v6gp-9mmm-c6p5 高危 1.10.8 1.13.4 Out-of-bounds Write in zlib affects Nokogiri

漏洞详情: https://github.com/advisories/GHSA-v6gp-9mmm-c6p5

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

addressable CVE-2021-32740 高危 2.7.0 >= 2.8.0 rubygem-addressable: ReDoS in templates

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32740

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-07-06 15:15 修改: 2023-11-07 03:35

puma CVE-2020-11076 高危 4.3.1 ~> 3.12.5, >= 4.3.4 rubygem-puma: HTTP Smuggling via an invalid Transfer-Encoding Header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11076

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-05-22 15:15 修改: 2023-11-07 03:14

puma CVE-2021-29509 高危 4.3.1 ~> 4.3.8, >= 5.3.1 rubygem-puma: incomplete fix for CVE-2019-16770 allows Denial of Service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29509

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-11 17:15 修改: 2022-10-27 12:39

puma CVE-2022-23634 高危 4.3.1 ~> 4.3.11, >= 5.6.2 rubygem-puma: rubygem-rails: information leak between requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23634

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-02-11 22:15 修改: 2023-11-07 03:44

bundler CVE-2019-3881 高危 1.17.3 >= 2.1.0 rubygem-bundler: Insecure permissions on directory in /tmp/ allows for execution of malicious code

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3881

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-09-04 12:15 修改: 2022-11-08 19:50

rack CVE-2020-8184 高危 2.2.2 ~> 2.1.4, >= 2.2.3 rubygem-rack: percent-encoded cookies can be used to overwrite existing prefixed cookie names

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8184

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-06-19 17:15 修改: 2023-02-16 19:24

rack CVE-2022-30122 高危 2.2.2 ~> 2.0.9, >= 2.0.9.1, ~> 2.1.4, >= 2.1.4.1, >= 2.2.3.1 rubygem-rack: crafted multipart POST request may cause a DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-30122

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-12-05 22:15 修改: 2023-12-20 03:02

rack CVE-2022-44570 高危 2.2.2 ~> 2.0.9, >= 2.0.9.2, ~> 2.1.4, >= 2.1.4.2, ~> 2.2.6, >= 2.2.6.2, >= 3.0.4.1 rubygem-rack: denial of service in Content-Disposition parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-44570

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-02-09 20:15 修改: 2023-12-08 22:15

rack CVE-2022-44571 高危 2.2.2 ~> 2.0.9, >= 2.0.9.2, ~> 2.1.4, >= 2.1.4.2, ~> 2.2.6, >= 2.2.6.1, >= 3.0.4.1 rubygem-rack: denial of service in Content-Disposition parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-44571

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-02-09 20:15 修改: 2023-12-08 22:15

rack CVE-2022-44572 高危 2.2.2 ~> 2.0.9, >= 2.0.9.2, ~> 2.1.4, >= 2.1.4.2, ~> 2.2.6, >= 2.2.6.1, >= 3.0.4.1 rubygem-rack: denial of service in Content-Disposition parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-44572

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-02-09 20:15 修改: 2023-12-08 22:15

rack CVE-2023-27530 高危 2.2.2 ~> 2.0.9, >= 2.0.9.3, ~> 2.1.4, >= 2.1.4.3, ~> 2.2.6, >= 2.2.6.3, >= 3.0.4.2 rubygem-rack: Denial of service in Multipart MIME parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27530

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-03-10 22:15 修改: 2024-10-15 19:35

rake CVE-2020-8130 高危 12.3.2 >= 12.3.3 rake: OS Command Injection via egrep in Rake::FileList

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8130

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-02-24 15:15 修改: 2023-11-07 03:26

rdoc CVE-2021-31799 高危 6.1.2 ~> 6.1.2.1, ~> 6.2.1.1, >= 6.3.1 rubygem-rdoc: Command injection vulnerability in RDoc

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31799

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-07-30 14:15 修改: 2024-10-15 21:35

sinatra CVE-2022-29970 高危 2.0.8.1 >= 2.2.0 sinatra: path traversal possible outside of public_dir when serving static files

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29970

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-05-02 05:15 修改: 2022-11-16 17:12

sinatra CVE-2022-45442 高危 2.0.8.1 ~> 2.2.3, >= 3.0.4 sinatra: Reflected File Download attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45442

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-11-28 21:15 修改: 2023-02-01 15:47

webrick CVE-2020-25613 高危 1.4.2 >= 1.6.1 ruby: Potential HTTP request smuggling in WEBrick

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25613

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-10-06 13:15 修改: 2024-01-24 05:15

webrick CVE-2024-47220 高危 1.4.2 >= 1.8.2 WEBrick: HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47220

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-09-22 01:15 修改: 2024-09-26 13:32

puma CVE-2024-45614 中危 4.3.1 ~> 5.6.9, >= 6.4.3 rubygem-puma: Header normalization allows for client to clobber proxy set headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45614

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-09-19 23:15 修改: 2024-09-26 13:28

nokogiri GHSA-pxvg-2qj5-37jq 中危 1.10.8 >= 1.14.3 Update packaged libxml2 to v2.10.4 to resolve multiple CVEs

漏洞详情: https://github.com/advisories/GHSA-pxvg-2qj5-37jq

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-vcc3-rw6f-jv97 中危 1.10.8 1.15.6, 1.16.2 Use-after-free in libxml2 via Nokogiri::XML::Reader

漏洞详情: https://github.com/advisories/GHSA-vcc3-rw6f-jv97

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-xc9x-jj77-9p9j 中危 1.10.8 ~> 1.15.6, >= 1.16.2 Use-after-free in libxml2 via Nokogiri::XML::Reader

漏洞详情: https://github.com/advisories/GHSA-xc9x-jj77-9p9j

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

nokogiri GHSA-xxx9-3xcr-gjj3 中危 1.10.8 1.13.4 XML Injection in Xerces Java affects Nokogiri

漏洞详情: https://github.com/advisories/GHSA-xxx9-3xcr-gjj3

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bundler CVE-2021-43809 中危 1.17.3 >= 2.2.33 rubygem-bundler: unexpected code execution in Gemfiles

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43809

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-12-08 19:15 修改: 2023-11-16 03:04

nokogiri CVE-2021-3537 中危 1.10.8 >= 1.11.4 libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38

nokogiri CVE-2022-23437 中危 1.10.8 >= 1.13.4 xerces-j2: infinite loop when handling specially crafted XML document payloads

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23437

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-01-24 15:15 修改: 2023-08-08 14:22

rack CVE-2023-27539 中危 2.2.2 ~> 2.0, >= 2.2.6.4, >= 3.0.6.1 rubygem-rack: denial of service in header parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27539

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

rack CVE-2024-25126 中危 2.2.2 ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1 rubygem-rack: Denial of Service Vulnerability in Rack Content-Type Parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25126

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-02-29 00:15 修改: 2024-06-10 18:15

rack CVE-2024-26141 中危 2.2.2 ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1 rubygem-rack: Possible DoS Vulnerability with Range Header in Rack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26141

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-02-29 00:15 修改: 2024-06-10 17:16

rack CVE-2024-26146 中危 2.2.2 ~> 2.0.9, >= 2.0.9.4, ~> 2.1.4, >= 2.1.4.4, ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1 rubygem-rack: Possible Denial of Service Vulnerability in Rack Header Parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26146

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-02-29 00:15 修改: 2024-06-10 18:15

nokogiri GHSA-2qc6-mcvw-92cw 中危 1.10.8 >= 1.13.9 Update bundled libxml2 to v2.10.3 to resolve multiple CVEs

漏洞详情: https://github.com/advisories/GHSA-2qc6-mcvw-92cw

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

puma CVE-2020-11077 中危 4.3.1 ~> 3.12.6, >= 4.3.5 rubygem-puma: HTTP Smuggling through a proxy via Transfer-Encoding Header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11077

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-05-22 15:15 修改: 2023-11-07 03:14

rdoc CVE-2024-27281 中危 6.1.2 ~> 6.3.4, >= 6.3.4.1, ~> 6.4.1, >= 6.4.1.1, >= 6.5.1.1 ruby: RCE vulnerability with .rdoc_options in RDoc

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27281

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-05-14 15:11 修改: 2024-08-20 14:35

puma CVE-2020-5247 中危 4.3.1 ~> 3.12.4, >= 4.3.3 rubygem-puma: attacker is able to use newline characters to insert malicious content (HTTP Response Splitting), this could lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-5247

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-02-28 17:15 修改: 2023-11-07 03:23

puma CVE-2020-5249 中危 4.3.1 ~> 3.12.4, >= 4.3.3 rubygem-puma: attacker is able to use carriage return character to insert malicious content (HTTP Response Splitting), this could lead to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-5249

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-03-02 16:15 修改: 2023-11-07 03:23

sinatra CVE-2024-21510 中危 2.0.8.1 >= 4.1.0 sinatra: Open Redirect Vulnerability in Sinatra via X-Forwarded-Host Header

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21510

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-11-01 05:15 修改: 2024-11-01 12:57

puma CVE-2023-40175 中危 4.3.1 ~> 5.6.7, >= 6.3.1 rubygem-puma: HTTP request smuggling when parsing chunked transfer encoding bodies and zero-length content-length headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40175

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2023-08-18 22:15 修改: 2023-08-24 18:48

puma CVE-2024-21647 中危 4.3.1 ~> 5.6.8, >= 6.4.2 rubygem-puma: HTTP request smuggling when parsing chunked Transfer-Encoding Bodies

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21647

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2024-01-08 14:15 修改: 2024-01-11 17:31

puma CVE-2021-41136 低危 4.3.1 ~> 4.3.9, >= 5.5.1 rubygem-puma: Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') in puma

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-41136

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-10-12 16:15 修改: 2022-10-12 13:30

nokogiri CVE-2020-26247 低危 1.10.8 >= 1.11.0.rc4 rubygem-nokogiri: XML external entity injection via Nokogiri::XML::Schema

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26247

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2020-12-30 19:15 修改: 2022-10-19 18:53

nokogiri GHSA-r95h-9x8f-r3f7 低危 1.10.8 >= 1.16.5 Nokogiri updates packaged libxml2 to v2.12.7 to resolve CVE-2024-34459

漏洞详情: https://github.com/advisories/GHSA-r95h-9x8f-r3f7

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

dalli CVE-2022-4064 低危 2.7.10 >= 3.2.3 Unsanitized input leading to code injection in Dalli

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4064

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2022-11-19 19:15 修改: 2023-11-07 03:56

bindata CVE-2021-32823 低危 2.4.5 >= 2.4.10 In the bindata RubyGem before version 2.4.10 there is a potential deni ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32823

镜像层: sha256:32f8d1dc1bd1aa3cd74a0281b987d05aa8ca2a72e188e4aaa9c13695eec89c31

发布日期: 2021-06-24 00:15 修改: 2024-08-21 14:09