docker.io/maven:3.8.7-openjdk-18 linux/amd64

docker.io/maven:3.8.7-openjdk-18 - Trivy安全扫描结果扫描时间: 2024-12-04 13:33

全部漏洞信息

低危漏洞:20

中危漏洞:147

高危漏洞:89

严重漏洞:0

系统OS: oracle 8.7 扫描引擎: Trivy 扫描时间: 2024-12-04 13:33

docker.io/maven:3.8.7-openjdk-18 (oracle 8.7) (oracle)

低危漏洞:19

中危漏洞:146

高危漏洞:89

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
emacs-filesystem	CVE-2023-2491	高危	1:26.1-7.el8	1:26.1-10.el8_8.2	emacs: Regression of CVE-2023-28617 fixes in the Red Hat Enterprise Linux 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2491 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-05-17 22:15 修改: 2023-05-25 17:25
emacs-filesystem	CVE-2023-28617	高危	1:26.1-7.el8	1:26.1-7.el8_7.1	emacs: command injection vulnerability in org-mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28617 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-03-19 03:15 修改: 2023-11-07 04:10
git	CVE-2023-22490	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git	CVE-2023-23946	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git	CVE-2023-25652	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git	CVE-2023-25815	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git	CVE-2023-29007	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
git	CVE-2024-32002	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: Recursive clones RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32002 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git	CVE-2024-32004	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: RCE while cloning local repos 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32004 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git	CVE-2024-32020	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: insecure hardlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32020 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-10 18:15
git	CVE-2024-32021	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: symlink bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32021 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
git	CVE-2024-32465	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: additional local RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32465 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
git-core	CVE-2023-22490	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git-core	CVE-2023-23946	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git-core	CVE-2023-25652	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git-core	CVE-2023-25815	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git-core	CVE-2023-29007	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
git-core	CVE-2024-32002	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: Recursive clones RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32002 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git-core	CVE-2024-32004	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: RCE while cloning local repos 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32004 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git-core	CVE-2024-32020	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: insecure hardlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32020 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-10 18:15
git-core	CVE-2024-32021	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: symlink bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32021 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
git-core	CVE-2024-32465	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: additional local RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32465 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2023-22490	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git-core-doc	CVE-2023-23946	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git-core-doc	CVE-2023-25652	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2023-25815	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2023-29007	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2024-32002	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: Recursive clones RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32002 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2024-32004	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: RCE while cloning local repos 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32004 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2024-32020	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: insecure hardlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32020 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-10 18:15
git-core-doc	CVE-2024-32021	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: symlink bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32021 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
git-core-doc	CVE-2024-32465	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: additional local RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32465 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
glibc	CVE-2023-4527	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4806	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4813	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc	CVE-2023-4911	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc	CVE-2024-2961	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33599	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33600	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33601	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc	CVE-2024-33602	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2023-4527	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4806	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4813	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-common	CVE-2023-4911	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-common	CVE-2024-2961	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33599	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33600	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33601	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-common	CVE-2024-33602	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2023-4527	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: Stack read overflow in getaddrinfo in no-aaaa mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4527 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4806	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4813	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
glibc-minimal-langpack	CVE-2023-4911	高危	2.28-211.0.1.el8	2.28-225.0.4.el8_8.6	glibc: buffer overflow in ld.so leading to privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4911 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-03 18:15 修改: 2024-09-17 19:46
glibc-minimal-langpack	CVE-2024-2961	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.1	glibc: Out of bounds write in iconv may lead to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2961 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-04-17 18:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33599	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33600	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33601	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
glibc-minimal-langpack	CVE-2024-33602	高危	2.28-211.0.1.el8	2.28-251.0.2.el8_10.2	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
krb5-libs	CVE-2024-3596	高危	1.18.2-22.0.1.el8_7	1.18.2-30.0.1.el8_10	freeradius: forgery attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-3596 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-07-09 12:15 修改: 2024-07-23 09:15
less	CVE-2022-48624	高危	530-1.el8	530-3.el8_10	less: missing quoting of shell metacharacters in LESSCLOSE handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48624 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-02-19 01:15 修改: 2024-06-10 18:15
less	CVE-2024-32487	高危	530-1.el8	530-3.el8_10	less: OS command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32487 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-04-13 15:15 修改: 2024-07-08 14:18
libgcc	CVE-2022-40982	高危	8.5.0-16.0.2.el8_7	8.5.0-18.0.5.el8	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-08-11 03:15 修改: 2023-11-07 03:52
libnghttp2	CVE-2023-44487	高危	1.33.0-3.el8_2.1	1.33.0-5.el8_8	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-10 14:15 修改: 2024-08-14 19:57
libstdc++	CVE-2022-40982	高危	8.5.0-16.0.2.el8_7	8.5.0-18.0.5.el8	hw: Intel: Gather Data Sampling (GDS) side channel vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40982 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-08-11 03:15 修改: 2023-11-07 03:52
openssh	CVE-2023-38408	高危	8.0p1-16.el8	8.0p1-19.el8_8	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
openssh-clients	CVE-2023-38408	高危	8.0p1-16.el8	8.0p1-19.el8_8	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
openssl-libs	CVE-2022-4304	高危	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2022-4450	高危	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl-libs	CVE-2023-0215	高危	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl-libs	CVE-2023-0286	高危	1:1.1.1k-7.el8_6	1:1.1.1k-9.el8_7	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
perl-Git	CVE-2023-22490	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
perl-Git	CVE-2023-23946	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
perl-Git	CVE-2023-25652	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
perl-Git	CVE-2023-25815	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
perl-Git	CVE-2023-29007	高危	2.31.1-3.el8_7	2.39.3-1.el8_8	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
perl-Git	CVE-2024-32002	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: Recursive clones RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32002 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
perl-Git	CVE-2024-32004	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: RCE while cloning local repos 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32004 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-26 10:15
perl-Git	CVE-2024-32020	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: insecure hardlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32020 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 19:15 修改: 2024-06-10 18:15
perl-Git	CVE-2024-32021	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: symlink bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32021 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
perl-Git	CVE-2024-32465	高危	2.31.1-3.el8_7	2.43.5-1.el8_10	git: additional local RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-32465 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-05-14 20:15 修改: 2024-06-26 10:15
platform-python	CVE-2023-24329	高危	3.6.8-48.0.1.el8_7	3.6.8-51.0.1.el8_8.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
platform-python	CVE-2023-40217	高危	3.6.8-48.0.1.el8_7	3.6.8-51.0.1.el8_8.2	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
platform-python	CVE-2023-6597	高危	3.6.8-48.0.1.el8_7	3.6.8-62.0.1.el8_10	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
platform-python-setuptools	CVE-2024-6345	高危	39.2.0-6.el8	39.2.0-8.el8_10	pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
python3-libs	CVE-2023-24329	高危	3.6.8-48.0.1.el8_7	3.6.8-51.0.1.el8_8.1	python: urllib.parse url blocklisting bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-24329 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-17 15:15 修改: 2023-11-07 04:08
python3-libs	CVE-2023-40217	高危	3.6.8-48.0.1.el8_7	3.6.8-51.0.1.el8_8.2	python: TLS handshake bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40217 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-25 01:15 修改: 2023-11-07 04:20
python3-libs	CVE-2023-6597	高危	3.6.8-48.0.1.el8_7	3.6.8-62.0.1.el8_10	python: Path traversal on tempfile.TemporaryDirectory 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6597 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3-setuptools-wheel	CVE-2024-6345	高危	39.2.0-6.el8	39.2.0-8.el8_10	pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
binutils	CVE-2022-4285	中危	2.30-117.0.3.el8	2.30-119.0.2.el8_8.2	binutils: NULL pointer dereference in _bfd_elf_get_symbol_version_string leads to segfault 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4285 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2023-01-27 18:15 修改: 2023-11-07 03:57
curl	CVE-2023-23916	中危	7.61.1-25.el8_7.1	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
gmp	CVE-2021-43618	中危	1:6.1.2-10.el8	1:6.1.2-11.el8	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
gnutls	CVE-2023-0361	中危	3.6.16-5.el8_6	3.6.16-6.el8_7	gnutls: timing side-channel in the TLS RSA key exchange code 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0361 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-15 18:15 修改: 2023-11-07 04:00
gnutls	CVE-2023-5981	中危	3.6.16-5.el8_6	3.6.16-8.el8_9	gnutls: timing side-channel in the RSA-PSK authentication 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5981 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-11-28 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-0553	中危	3.6.16-5.el8_6	3.6.16-8.el8_9.1	gnutls: incomplete fix for CVE-2023-5981 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0553 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-01-16 12:15 修改: 2024-09-16 13:15
gnutls	CVE-2024-28834	中危	3.6.16-5.el8_6	3.6.16-8.el8_9.3	gnutls: vulnerable to Minerva side-channel information leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28834 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-03-21 14:15 修改: 2024-11-21 21:15
emacs-filesystem	CVE-2022-45939	中危	1:26.1-7.el8	1:26.1-9.el8	emacs: ctags local command execution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45939 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-11-28 06:15 修改: 2023-11-07 03:54
krb5-libs	CVE-2024-26458	中危	1.18.2-22.0.1.el8_7	1.18.2-27.0.1.el8_10	krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
krb5-libs	CVE-2024-26461	中危	1.18.2-22.0.1.el8_7	1.18.2-27.0.1.el8_10	krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
krb5-libs	CVE-2024-37370	中危	1.18.2-22.0.1.el8_7	1.18.2-29.0.1.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
krb5-libs	CVE-2024-37371	中危	1.18.2-22.0.1.el8_7	1.18.2-29.0.1.el8_10	krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
git-core-doc	CVE-2022-24765	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: On multi-user machines Git users might find themselves unexpectedly in a Git worktree 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24765 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-04-12 18:15 修改: 2023-12-27 10:15
git-core-doc	CVE-2022-29187	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: Bypass of safe.directory protections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29187 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-07-12 21:15 修改: 2024-01-14 10:15
libcap	CVE-2023-2602	中危	2.48-4.el8	2.48-5.el8_8	libcap: Memory Leak on pthread_create() Error 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2602 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-06-06 20:15 修改: 2023-11-30 05:15
libcap	CVE-2023-2603	中危	2.48-4.el8	2.48-5.el8_8	libcap: Integer Overflow in _libcap_strdup() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2603 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-06-06 20:15 修改: 2024-10-10 16:32
libcurl	CVE-2023-23916	中危	7.61.1-25.el8_7.1	7.61.1-25.el8_7.3	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl	CVE-2023-27536	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-28321	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
libcurl	CVE-2023-28322	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl	CVE-2023-38546	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libcurl	CVE-2023-46218	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl	CVE-2024-2398	中危	7.61.1-25.el8_7.1	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
git-core-doc	CVE-2022-39253	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
git-core-doc	CVE-2022-39260	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
libnghttp2	CVE-2024-28182	中危	1.33.0-3.el8_2.1	1.33.0-6.el8_10.1	nghttp2: CONTINUATION frames DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28182 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-04-04 15:15 修改: 2024-05-01 18:15
libssh	CVE-2023-1667	中危	0.9.6-3.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh	CVE-2023-2283	中危	0.9.6-3.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh	CVE-2023-48795	中危	0.9.6-3.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
libssh-config	CVE-2023-1667	中危	0.9.6-3.el8	0.9.6-10.el8_8	libssh: NULL pointer dereference during rekeying with algorithm guessing 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1667 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 18:15 修改: 2023-12-22 10:15
libssh-config	CVE-2023-2283	中危	0.9.6-3.el8	0.9.6-10.el8_8	libssh: authorization bypass in pki_verify_data_signature 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2283 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 18:15 修改: 2024-02-01 17:15
libssh-config	CVE-2023-48795	中危	0.9.6-3.el8	0.9.6-13.el8_9	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
git	CVE-2022-24765	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: On multi-user machines Git users might find themselves unexpectedly in a Git worktree 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24765 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-04-12 18:15 修改: 2023-12-27 10:15
libxml2	CVE-2023-28484	中危	2.9.7-15.el8_7.1	2.9.7-16.el8_8.1	libxml2: NULL dereference in xmlSchemaFixupComplexType 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28484 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-04-24 21:15 修改: 2024-02-01 17:15
libxml2	CVE-2023-29469	中危	2.9.7-15.el8_7.1	2.9.7-16.el8_8.1	libxml2: Hashing of empty dict strings isn't deterministic 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29469 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-04-24 21:15 修改: 2023-06-01 14:15
libxml2	CVE-2023-39615	中危	2.9.7-15.el8_7.1	2.9.7-18.el8_9	libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2024-25062	中危	2.9.7-15.el8_7.1	2.9.7-18.el8_10.1	libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
ncurses	CVE-2023-29491	中危	6.1-9.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-base	CVE-2023-29491	中危	6.1-9.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-libs	CVE-2023-29491	中危	6.1-9.20180224.el8	6.1-9.20180224.el8_8.1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
git	CVE-2022-29187	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: Bypass of safe.directory protections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29187 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-07-12 21:15 修改: 2024-01-14 10:15
openssh	CVE-2020-15778	中危	8.0p1-16.el8	8.0p1-24.0.1.el8	openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh	CVE-2023-48795	中危	8.0p1-16.el8	8.0p1-19.0.1.el8_9.2	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
openssh	CVE-2023-51385	中危	8.0p1-16.el8	8.0p1-19.0.1.el8_9.2	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
git	CVE-2022-39253	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
openssh-clients	CVE-2020-15778	中危	8.0p1-16.el8	8.0p1-24.0.1.el8	openssh: scp allows command injection when using backtick characters in the destination argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15778 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2020-07-24 14:15 修改: 2024-08-04 14:15
openssh-clients	CVE-2023-48795	中危	8.0p1-16.el8	8.0p1-19.0.1.el8_9.2	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 16:15 修改: 2024-05-01 18:15
openssh-clients	CVE-2023-51385	中危	8.0p1-16.el8	8.0p1-19.0.1.el8_9.2	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
git	CVE-2022-39260	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
emacs-filesystem	CVE-2022-48337	中危	1:26.1-7.el8	1:26.1-11.el8	emacs: command execution via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48337 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-20 23:15 修改: 2023-11-07 03:56
emacs-filesystem	CVE-2022-48339	中危	1:26.1-7.el8	1:26.1-11.el8	emacs: command injection vulnerability in htmlfontify.el 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48339 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-02-20 23:15 修改: 2023-11-07 03:56
emacs-filesystem	CVE-2024-30203	中危	1:26.1-7.el8	1:26.1-12.el8_10	emacs: Gnus treats inline MIME contents as trusted 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30203 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-25 15:15 修改: 2024-11-07 11:35
pam	CVE-2024-22365	中危	1.3.1-22.el8	1.3.1-33.el8	pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
perl-Carp	CVE-2023-47038	中危	1.42-396.el8	1.50-439.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Encode	CVE-2023-47038	中危	4:2.97-3.el8	4:3.08-461.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Errno	CVE-2023-47038	中危	1.28-421.el8	1.30-473.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Exporter	CVE-2023-47038	中危	5.72-396.el8	5.74-458.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-File-Path	CVE-2023-47038	中危	2.15-2.el8	2.16-439.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-File-Temp	CVE-2023-47038	中危	0.230.600-1.el8	1:0.231.100-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Getopt-Long	CVE-2023-47038	中危	1:2.50-4.el8	1:2.52-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
emacs-filesystem	CVE-2024-30205	中危	1:26.1-7.el8	1:26.1-12.el8_10	emacs: Org mode considers contents of remote files to be trusted 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30205 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-25 15:15 修改: 2024-05-01 17:15
emacs-filesystem	CVE-2024-39331	中危	1:26.1-7.el8	1:26.1-12.el8_10	emacs: org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39331 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-06-23 22:15 修改: 2024-07-03 02:05
expat	CVE-2023-52425	中危	2.2.5-10.0.1.el8_7.1	2.2.5-11.0.1.el8_9.1	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
expat	CVE-2024-45490	中危	2.2.5-10.0.1.el8_7.1	2.2.5-15.0.1.el8_10	libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
expat	CVE-2024-45491	中危	2.2.5-10.0.1.el8_7.1	2.2.5-15.0.1.el8_10	libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat	CVE-2024-45492	中危	2.2.5-10.0.1.el8_7.1	2.2.5-15.0.1.el8_10	libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
expat	CVE-2024-50602	中危	2.2.5-10.0.1.el8_7.1	2.2.5-16.0.1.el8_10	libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
git-core	CVE-2022-24765	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: On multi-user machines Git users might find themselves unexpectedly in a Git worktree 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24765 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-04-12 18:15 修改: 2023-12-27 10:15
git-core	CVE-2022-29187	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: Bypass of safe.directory protections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29187 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-07-12 21:15 修改: 2024-01-14 10:15
git-core	CVE-2022-39253	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
perl-Git	CVE-2022-24765	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: On multi-user machines Git users might find themselves unexpectedly in a Git worktree 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24765 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-04-12 18:15 修改: 2023-12-27 10:15
perl-Git	CVE-2022-29187	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: Bypass of safe.directory protections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29187 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-07-12 21:15 修改: 2024-01-14 10:15
perl-Git	CVE-2022-39253	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
perl-Git	CVE-2022-39260	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
perl-HTTP-Tiny	CVE-2023-31486	中危	0.074-1.el8	0.074-2.el8	http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-29 00:15 修改: 2023-06-21 18:19
perl-HTTP-Tiny	CVE-2023-47038	中危	0.074-1.el8	0.078-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-IO	CVE-2023-47038	中危	1.38-421.el8	1.43-473.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-MIME-Base64	CVE-2023-47038	中危	3.15-396.el8	3.15-1001.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-PathTools	CVE-2023-47038	中危	3.74-1.el8	3.78-439.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Pod-Escapes	CVE-2023-47038	中危	1:1.07-395.el8	1:1.07-396.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Pod-Perldoc	CVE-2023-47038	中危	3.28-396.el8	3.28.01-443.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Pod-Simple	CVE-2023-47038	中危	1:3.35-395.el8	1:3.42-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Pod-Usage	CVE-2023-47038	中危	4:1.69-395.el8	4:2.01-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Scalar-List-Utils	CVE-2023-47038	中危	3:1.49-2.el8	4:1.55-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Socket	CVE-2023-47038	中危	4:2.027-3.el8	4:2.031-1.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Storable	CVE-2023-47038	中危	1:3.11-3.el8	1:3.21-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Term-ANSIColor	CVE-2023-47038	中危	4.06-396.el8	5.01-458.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Term-Cap	CVE-2023-47038	中危	1.17-395.el8	1.17-396.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Text-ParseWords	CVE-2023-47038	中危	3.30-395.el8	3.30-396.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Text-Tabs+Wrap	CVE-2023-47038	中危	2013.0523-395.el8	2013.0523-396.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Time-Local	CVE-2023-47038	中危	1:1.280-1.el8	2:1.300-4.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-Unicode-Normalize	CVE-2023-47038	中危	1.25-396.el8	1.27-458.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-constant	CVE-2023-47038	中危	1.33-396.el8	1.33-1001.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-interpreter	CVE-2023-47038	中危	4:5.26.3-421.el8	4:5.32.1-473.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-libs	CVE-2023-47038	中危	4:5.26.3-421.el8	4:5.32.1-473.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-macros	CVE-2023-47038	中危	4:5.26.3-421.el8	4:5.32.1-473.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-parent	CVE-2023-47038	中危	1:0.237-1.el8	1:0.238-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-podlators	CVE-2023-47038	中危	4.11-1.el8	1:4.14-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-threads	CVE-2023-47038	中危	1:2.21-2.el8	1:2.25-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
perl-threads-shared	CVE-2023-47038	中危	1.58-2.el8	1.61-457.module+el8.10.0+90267+7012ad3b	perl: Write past buffer end via illegal user-defined Unicode property 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-47038 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-12-18 14:15 修改: 2024-09-16 16:15
git-core	CVE-2022-39260	中危	2.31.1-3.el8_7	2.39.1-1.el8	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
curl	CVE-2023-27535	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.2	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
curl	CVE-2023-27536	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.3	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
platform-python	CVE-2007-4559	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
platform-python	CVE-2020-10735	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
platform-python	CVE-2021-28861	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
platform-python	CVE-2022-45061	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
platform-python	CVE-2022-48560	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.2	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
platform-python	CVE-2022-48564	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.2	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
platform-python	CVE-2023-27043	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.3	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
platform-python	CVE-2024-0450	中危	3.6.8-48.0.1.el8_7	3.6.8-62.0.1.el8_10	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
platform-python	CVE-2024-4032	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
platform-python	CVE-2024-6232	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
platform-python	CVE-2024-6923	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
curl	CVE-2023-28321	中危	7.61.1-25.el8_7.1	7.61.1-30.el8_8.3	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 21:15 修改: 2023-11-07 04:10
platform-python-setuptools	CVE-2022-40897	中危	39.2.0-6.el8	39.2.0-6.el8_7.1	pypa-setuptools: Regular Expression Denial of Service (ReDoS) in package_index.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40897 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-12-23 00:15 修改: 2024-10-29 15:35
curl	CVE-2023-28322	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
curl	CVE-2023-38546	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
curl	CVE-2023-46218	中危	7.61.1-25.el8_7.1	7.61.1-33.el8_9.5	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
python3-libs	CVE-2007-4559	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
python3-libs	CVE-2020-10735	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
python3-libs	CVE-2021-28861	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
python3-libs	CVE-2022-45061	中危	3.6.8-48.0.1.el8_7	3.6.8-48.0.1.el8_7.1	python: CPU denial of service via inefficient IDNA decoder 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45061 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-11-09 07:15 修改: 2023-11-07 03:54
python3-libs	CVE-2022-48560	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.2	python: use after free in heappushpop() of heapq module 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48560 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-22 19:16 修改: 2023-12-08 03:15
python3-libs	CVE-2022-48564	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.2	python: DoS when processing malformed Apple Property List files in binary format 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48564 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-08-22 19:16 修改: 2023-12-15 15:56
python3-libs	CVE-2023-27043	中危	3.6.8-48.0.1.el8_7	3.6.8-56.0.1.el8_9.3	python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3-libs	CVE-2024-0450	中危	3.6.8-48.0.1.el8_7	3.6.8-62.0.1.el8_10	python: The zipfile module is vulnerable to zip-bombs leading to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0450 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-03-19 16:15 修改: 2024-06-10 18:15
python3-libs	CVE-2024-4032	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	python: incorrect IPv4 and IPv6 private ranges 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3-libs	CVE-2024-6232	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3-libs	CVE-2024-6923	中危	3.6.8-48.0.1.el8_7	3.6.8-67.0.1.el8_10	cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3-pip-wheel	CVE-2007-4559	中危	9.0.3-22.el8	9.0.3-23.el8	python: tarfile module directory traversal 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-4559 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2007-08-28 01:17 修改: 2024-03-23 03:15
curl	CVE-2024-2398	中危	7.61.1-25.el8_7.1	7.61.1-34.el8_10.2	curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
python3-setuptools-wheel	CVE-2022-40897	中危	39.2.0-6.el8	39.2.0-6.el8_7.1	pypa-setuptools: Regular Expression Denial of Service (ReDoS) in package_index.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40897 镜像层: sha256:26fbda058ddfa82205886a2b1c8b7a8c90f64d501a04c8e4cb2b7bc72c6ef1ed 发布日期: 2022-12-23 00:15 修改: 2024-10-29 15:35
rpm	CVE-2021-35937	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm	CVE-2021-35938	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm	CVE-2021-35939	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
rpm-libs	CVE-2021-35937	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: TOCTOU race in checks for unsafe symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35937 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-25 20:15 修改: 2023-11-07 03:36
rpm-libs	CVE-2021-35938	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: races with chown/chmod/capabilities calls during installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35938 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-25 20:15 修改: 2022-11-29 18:06
rpm-libs	CVE-2021-35939	中危	4.14.3-24.el8_7	4.14.3-28.0.2.el8_9	rpm: checks for unsafe symlinks are not performed for intermediary directories 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35939 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-08-26 16:15 修改: 2023-02-04 01:16
sqlite-libs	CVE-2020-24736	中危	3.26.0-17.el8_7	3.26.0-18.0.1.el8_8	sqlite: Crash due to misuse of window functions. 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24736 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-04-11 18:15 修改: 2023-05-26 20:15
sqlite-libs	CVE-2023-7104	中危	3.26.0-17.el8_7	3.26.0-19.0.1.el8_9	sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
systemd-libs	CVE-2022-4415	中危	239-68.0.2.el8_7.2	239-68.0.2.el8_7.4	systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
systemd-libs	CVE-2023-26604	中危	239-68.0.2.el8_7.2	239-74.0.4.el8_8.2	systemd: privilege escalation via the less pager 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26604 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-03-03 16:15 修改: 2023-11-07 04:09
systemd-libs	CVE-2023-7008	中危	239-68.0.2.el8_7.2	239-82.0.1.el8	systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-23 13:15 修改: 2024-11-22 12:15
tar	CVE-2022-48303	中危	2:1.30-6.el8	2:1.30-6.el8_7.1	tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
libgcc	CVE-2023-4039	低危	8.5.0-16.0.2.el8_7	8.5.0-18.0.5.el8	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libssh-config	CVE-2023-6004	低危	0.9.6-3.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh-config	CVE-2023-6918	低危	0.9.6-3.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
curl	CVE-2022-43552	低危	7.61.1-25.el8_7.1	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libstdc++	CVE-2023-4039	低危	8.5.0-16.0.2.el8_7	8.5.0-18.0.5.el8	gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
binutils	CVE-2018-12699	低危	2.30-117.0.3.el8	2.30-125.0.1.el8_10	binutils: heap-based buffer overflow in finish_stab in stabs.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12699 镜像层: sha256:077bff59ce5723e3c7d78bdf4fd8b10d72f6f8474b97cdb9323816aa5d8314a6 发布日期: 2018-06-23 23:29 修改: 2019-08-03 13:15
bzip2-libs	CVE-2019-12900	低危	1.0.6-26.el8	1.0.6-27.0.1.el8_10	bzip2: out-of-bounds write in function BZ2_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
libarchive	CVE-2022-36227	低危	3.3.3-4.el8	3.3.3-5.el8	libarchive: NULL pointer dereference in archive_write.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-36227 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-11-22 02:15 修改: 2024-03-27 16:04
libcurl	CVE-2022-35252	低危	7.61.1-25.el8_7.1	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
libssh	CVE-2023-6004	低危	0.9.6-3.el8	0.9.6-14.el8	libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6004 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-01-03 17:15 修改: 2024-09-16 18:15
libssh	CVE-2023-6918	低危	0.9.6-3.el8	0.9.6-14.el8	libssh: Missing checks for return values for digests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6918 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-19 00:15 修改: 2024-09-16 18:15
openssl-libs	CVE-2023-3446	低危	1:1.1.1k-7.el8_6	1:1.1.1k-12.el8_9	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
shadow-utils	CVE-2023-4641	低危	2:4.6-17.el8	2:4.6-19.el8	shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
openssl-libs	CVE-2023-3817	低危	1:1.1.1k-7.el8_6	1:1.1.1k-12.el8_9	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2023-5678	低危	1:1.1.1k-7.el8_6	1:1.1.1k-12.el8_9	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl-libs	CVE-2024-5535	低危	1:1.1.1k-7.el8_6	1:1.1.1k-14.el8_6	openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libcurl	CVE-2022-43552	低危	7.61.1-25.el8_7.1	7.61.1-30.el8	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
openldap	CVE-2023-2953	低危	2.4.46-18.el8	2.4.46-19.el8_10	openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
curl	CVE-2022-35252	低危	7.61.1-25.el8_7.1	7.61.1-30.el8	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:9cd9df9ffc972e9abc946d855162ef0c40dff9a89f10c962b7920154a3d943d8 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00

Java (jar)

低危漏洞:1

中危漏洞:1

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
com.google.guava:guava	CVE-2023-2976	中危	25.1-android	32.0.0-android	guava: insecure temporary directory creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976 镜像层: sha256:8173bb9e429cb271a659fd8c7a5cf9a352f4feb895c10ded28d02cfb9ac1d220 发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.google.guava:guava	CVE-2020-8908	低危	25.1-android	32.0.0-android	guava: local information disclosure via temporary directory created with unsafe permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908 镜像层: sha256:8173bb9e429cb271a659fd8c7a5cf9a352f4feb895c10ded28d02cfb9ac1d220 发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

com.google.guava:guava

CVE-2023-2976

中危

25.1-android

32.0.0-android

guava: insecure temporary directory creation