docker.io/longhornio/longhorn-share-manager:v1.8.x-head linux/amd64

docker.io/longhornio/longhorn-share-manager:v1.8.x-head - Trivy安全扫描结果 扫描时间: 2026-05-15 13:53
全部漏洞信息
低危漏洞:2 中危漏洞:36 高危漏洞:33 严重漏洞:5

系统OS: sles 15.6 扫描引擎: Trivy 扫描时间: 2026-05-15 13:53

docker.io/longhornio/longhorn-share-manager:v1.8.x-head (sles 15.6) (sles)
低危漏洞:0 中危漏洞:15 高危漏洞:19 严重漏洞:3
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libopenssl-3-fips-provider SUSE-SU-2026:0312-1 严重 3.1.4-150600.5.39.1 3.1.4-150600.5.42.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl3 SUSE-SU-2026:0312-1 严重 3.1.4-150600.5.39.1 3.1.4-150600.5.42.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-3 SUSE-SU-2026:0312-1 严重 3.1.4-150600.5.39.1 3.1.4-150600.5.42.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpg2 SUSE-SU-2026:0215-1 高危 2.4.4-150600.3.9.1 2.4.4-150600.3.12.1 Security update for gpg2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gpg2 SUSE-SU-2026:0434-1 高危 2.4.4-150600.3.9.1 2.4.4-150600.3.15.1 Security update for gpg2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcap2 SUSE-SU-2026:1432-1 高危 2.63-150400.3.3.1 2.63-150400.3.6.1 Security update for libcap

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 SUSE-SU-2026:0885-1 高危 8.14.1-150600.4.28.1 8.14.1-150600.4.40.1 Security update for curl

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 SUSE-SU-2025:03624-1 高危 2.7.1-150400.3.28.1 2.7.1-150400.3.31.1 Security update for expat

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libexpat1 SUSE-SU-2026:1166-1 高危 2.7.1-150400.3.28.1 2.7.1-150400.3.37.1 Security update for expat

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libglib-2_0-0 SUSE-SU-2026:0018-1 高危 2.78.6-150600.4.16.1 2.78.6-150600.4.25.1 Security update for glib2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libglib-2_0-0 SUSE-SU-2026:0373-1 高危 2.78.6-150600.4.16.1 2.78.6-150600.4.35.1 Security update for glib2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnghttp2-14 SUSE-SU-2026:1350-1 高危 1.40.0-150600.23.2 1.40.0-150600.25.5.1 Security update for nghttp2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl SUSE-SU-2026:0885-1 高危 8.14.1-150600.4.28.1 8.14.1-150600.4.40.1 Security update for curl

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl-3-fips-provider SUSE-SU-2026:1215-1 高危 3.1.4-150600.5.39.1 3.1.4-150600.5.45.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glibc SUSE-SU-2026:0371-1 高危 2.38-150600.14.37.1 2.38-150600.14.40.1 Security update for glibc

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl3 SUSE-SU-2026:1215-1 高危 3.1.4-150600.5.39.1 3.1.4-150600.5.45.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libsystemd0 SUSE-SU-2026:1040-1 高危 254.27-150600.4.43.3 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libudev1 SUSE-SU-2026:1040-1 高危 254.27-150600.4.43.3 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
glibc SUSE-SU-2026:1369-1 高危 2.38-150600.14.37.1 2.38-150600.14.46.1 Security update for glibc

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-3 SUSE-SU-2026:1215-1 高危 3.1.4-150600.5.39.1 3.1.4-150600.5.45.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
systemd SUSE-SU-2026:1040-1 高危 254.27-150600.4.43.3 254.27-150600.4.62.1 Security update for systemd

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar SUSE-SU-2026:1177-1 高危 1.34-150000.3.34.1 1.34-150000.3.37.1 Security update for tar

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libelf1 SUSE-SU-2025:4092-1 中危 0.185-150400.5.3.1 0.185-150400.5.8.3 Security update for elfutils

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl-3-fips-provider SUSE-SU-2026:1605-1 中危 3.1.4-150600.5.39.1 3.1.4-150600.5.50.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
curl SUSE-SU-2025:4236-1 中危 8.14.1-150600.4.28.1 8.14.1-150600.4.31.1 Security update for curl

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
krb5 SUSE-SU-2025:3699-1 中危 1.20.1-150600.11.11.2 1.20.1-150600.11.14.1 Security update for krb5

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libopenssl3 SUSE-SU-2026:1605-1 中危 3.1.4-150600.5.39.1 3.1.4-150600.5.50.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libcurl4 SUSE-SU-2025:4236-1 中危 8.14.1-150600.4.28.1 8.14.1-150600.4.31.1 Security update for curl

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libdw1 SUSE-RU-2025:4092-1 中危 0.185-150400.5.3.1 0.185-150400.5.8.3 Security update for elfutils

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nfs-client SUSE-SU-2026:1356-1 中危 2.6.4-150600.28.12.1 2.6.4-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nfs-kernel-server SUSE-SU-2026:1356-1 中危 2.6.4-150600.28.12.1 2.6.4-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nfsidmap-devel SUSE-SU-2026:1356-1 中危 1.0-150600.28.12.1 1.0-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libglib-2_0-0 SUSE-SU-2025:4308-1 中危 2.78.6-150600.4.16.1 2.78.6-150600.4.22.1 Security update for glib2

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnfsidmap1 SUSE-SU-2026:1356-1 中危 1.0-150600.28.12.1 1.0-150600.28.19.1 Security update for nfs-utils

漏洞详情:

镜像层: sha256:746d946522b07fc801e1f581f0df18640784d666a87889ea8ce01a197ee539b9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openssl-3 SUSE-SU-2026:1605-1 中危 3.1.4-150600.5.39.1 3.1.4-150600.5.50.1 Security update for openssl-3

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libdw1 SUSE-SU-2025:4092-1 中危 0.185-150400.5.3.1 0.185-150400.5.8.3 Security update for elfutils

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libelf1 SUSE-RU-2025:4092-1 中危 0.185-150400.5.3.1 0.185-150400.5.8.3 Security update for elfutils

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2026:0319-1 未知 2.5.5-150000.4.71.1 2.5.5-150000.4.77.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2026:0909-1 未知 2.5.5-150000.4.71.1 2.5.6-150000.4.82.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2026:1484-1 未知 2.5.5-150000.4.71.1 2.5.6-150000.4.84.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
container-suseconnect SUSE-SU-2025:4373-1 未知 2.5.5-150000.4.71.1 2.5.5-150000.4.75.1 Security update for container-suseconnect

漏洞详情:

镜像层: sha256:d5a8485291df4c193510beb61d98a90a0c94b2e298983ed8d781e0700020c413

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
longhorn-share-manager (gobinary)
低危漏洞:2 中危漏洞:21 高危漏洞:14 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
google.golang.org/grpc CVE-2026-33186 严重 v1.74.2 1.79.3 google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33186

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-03-20 23:16 修改: 2026-04-10 20:49
stdlib CVE-2025-68121 严重 v1.23.12 1.24.13, 1.25.7, 1.26.0-rc.3 crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68121

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-02-05 18:16 修改: 2026-04-29 14:16
github.com/opencontainers/selinux CVE-2025-52881 高危 v1.11.1 1.13.0 runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52881

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-11-06 21:15 修改: 2025-12-03 18:37
stdlib CVE-2025-58183 高危 v1.23.12 1.24.8, 1.25.2 golang: archive/tar: Unbounded allocation when parsing GNU sparse map

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58183

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61726 高危 v1.23.12 1.24.12, 1.25.6 golang: net/url: Memory exhaustion in query parameter parsing in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61726

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:47
stdlib CVE-2025-61728 高危 v1.23.12 1.24.12, 1.25.6 golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61728

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-01-28 20:16 修改: 2026-02-06 18:45
stdlib CVE-2025-61729 高危 v1.23.12 1.24.11, 1.25.5 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61729

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-12-02 19:15 修改: 2025-12-19 18:25
stdlib CVE-2026-25679 高危 v1.23.12 1.25.8, 1.26.1 net/url: Incorrect parsing of IPv6 host literals in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25679

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:43
stdlib CVE-2026-32280 高危 v1.23.12 1.25.9, 1.26.2 crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32280

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:16
stdlib CVE-2026-32281 高危 v1.23.12 1.25.9, 1.26.2 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32281

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32283 高危 v1.23.12 1.25.9, 1.26.2 crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32283

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:12
stdlib CVE-2026-33811 高危 v1.23.12 1.25.10, 1.26.3 When using LookupCNAME with the cgo DNS resolver, a very long CNAME re ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33811

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-12 20:23
stdlib CVE-2026-33814 高危 v1.23.12 1.25.10, 1.26.3 When processing HTTP/2 SETTINGS frames, transport will enter an infini ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33814

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 19:16
stdlib CVE-2026-39820 高危 v1.23.12 1.25.10, 1.26.3 Well-crafted inputs reaching ParseAddress, ParseAddressList, and Parse ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39820

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39836 高危 v1.23.12 1.25.10, 1.26.3 Panic in Dial and LookupPort when handling NUL byte on Windows in net

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39836

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-42499 高危 v1.23.12 1.25.10, 1.26.3 Pathological inputs could cause DoS through consumePhrase when parsing ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42499

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
k8s.io/kubernetes CVE-2025-5187 中危 v1.32.3 1.31.12, 1.32.8, 1.33.4 kubernetes: kube-apiserver: Nodes can delete themselves by adding an OwnerReference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5187

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-08-27 17:15 修改: 2026-04-15 00:35
k8s.io/kubernetes CVE-2025-13281 中危 v1.32.3 1.32.10, 1.33.6, 1.34.2 kube-controller-manager: Portworx Half-Blind SSRF in kube-controller-manager

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13281

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-12-14 22:15 修改: 2026-04-15 00:35
k8s.io/kubernetes CVE-2025-1767 中危 v1.32.3 kubelet: GitRepo Volume Inadvertent Local Repository Access

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-1767

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-03-13 17:15 修改: 2026-04-15 00:35
stdlib CVE-2025-47912 中危 v1.23.12 1.24.8, 1.25.2 net/url: Insufficient validation of bracketed IPv6 hostnames in net/url

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-47912

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 13:57
stdlib CVE-2025-58185 中危 v1.23.12 1.24.8, 1.25.2 encoding/asn1: Parsing DER payload can cause memory exhaustion in encoding/asn1

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58185

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-02-06 20:26
stdlib CVE-2025-58186 中危 v1.23.12 1.24.8, 1.25.2 golang.org/net/http: Lack of limit when parsing cookies can cause memory exhaustion in net/http

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58186

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-58187 中危 v1.23.12 1.24.9, 1.25.3 crypto/x509: Quadratic complexity when checking name constraints in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58187

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 16:02
stdlib CVE-2025-58188 中危 v1.23.12 1.24.8, 1.25.2 crypto/x509: golang: Panic when validating certificates with DSA public keys in crypto/x509

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58188

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:55
stdlib CVE-2025-58189 中危 v1.23.12 1.24.8, 1.25.2 crypto/tls: go crypto/tls ALPN negotiation error contains attacker controlled information

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-58189

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61723 中危 v1.23.12 1.24.8, 1.25.2 encoding/pem: Quadratic complexity when parsing some invalid inputs in encoding/pem

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61723

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:49
stdlib CVE-2025-61724 中危 v1.23.12 1.24.8, 1.25.2 net/textproto: Excessive CPU consumption in Reader.ReadResponse in net/textproto

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61724

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-01-29 15:30
stdlib CVE-2025-61725 中危 v1.23.12 1.24.8, 1.25.2 net/mail: Excessive CPU consumption in ParseAddress in net/mail

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61725

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-10-29 23:16 修改: 2026-04-15 00:35
stdlib CVE-2025-61727 中危 v1.23.12 1.24.11, 1.25.5 golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61727

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-12-03 20:16 修改: 2025-12-18 20:15
stdlib CVE-2025-61730 中危 v1.23.12 1.24.12, 1.25.6 During the TLS 1.3 handshake if multiple messages are sent in records ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-61730

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-01-28 20:16 修改: 2026-02-03 20:36
stdlib CVE-2026-27142 中危 v1.23.12 1.25.8, 1.26.1 html/template: URLs in meta content attribute actions are not escaped in html/template

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27142

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:30
stdlib CVE-2026-32282 中危 v1.23.12 1.25.9, 1.26.2 golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32282

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:15
stdlib CVE-2026-32288 中危 v1.23.12 1.25.9, 1.26.2 archive/tar: golang: Go's archive/tar package: Denial of Service via maliciously-crafted archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32288

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:08
stdlib CVE-2026-32289 中危 v1.23.12 1.25.9, 1.26.2 html/template: golang: html/template: Cross-Site Scripting (XSS) via improper context and brace depth tracking in JS template literals

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32289

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-04-08 02:16 修改: 2026-04-16 19:06
stdlib CVE-2026-39823 中危 v1.23.12 1.25.10, 1.26.3 CVE-2026-27142 fixed a vulnerability in which URLs were not correctly ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39823

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
stdlib CVE-2026-39825 中危 v1.23.12 1.25.10, 1.26.3 ReverseProxy can forward queries containing parameters not visible to ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39825

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 22:16
stdlib CVE-2026-39826 中危 v1.23.12 1.25.10, 1.26.3 If a trusted template author were to write a <script> tag containing a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-39826

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-05-07 20:16 修改: 2026-05-08 15:16
k8s.io/kubernetes CVE-2025-4563 低危 v1.32.3 1.32.6, 1.33.2 kube-apiserver: NodeRestriction Admission Controller Dynamic Resource Allocation Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4563

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2025-06-23 16:15 修改: 2026-04-15 00:35
stdlib CVE-2026-27139 低危 v1.23.12 1.25.8, 1.26.1 os: FileInfo can escape from a Root in golang os module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27139

镜像层: sha256:8f2abc601f51ce40a03ebf25fcb8f15a46c19c8ed68e2f5e7cdcea033a9d9ce0

发布日期: 2026-03-06 22:16 修改: 2026-04-21 14:32